Your SlideShare is downloading. ×
0
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Ips and ids
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Ips and ids

253

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
253
On Slideshare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
13
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. IPS AND IDS
  • 2. SNORT-A free and open source intrusion prevention system and intrusiondetection system-Snort IPS and IDS has the ability to perform real-time traffic analysis andpacket logging on Internet protocol(IP) networks-Can be used to detect probes or attacks, like OS fingerprint attempts,buffer overflows, and stealth port scans-Can be configured in three modes: sniffer, packet logger, and networkintrusion detection.
  • 3. INSTALLING SNORT-For Windows, you have to prepare your computer by installing WinPcapand Barnyard-Download Snort-Download Rules-Configure Rules
  • 4. WINPCAP
  • 5. BARNYARD
  • 6. RULES
  • 7. SUCCESSFUL INSTALL
  • 8. ONLINE SERVICE ANALYZERS-Malwr-VirusTotal-Anubis-Wepawet
  • 9. VIRUSTOTAL
  • 10. WEPAWET
  • 11. DISCUSSIONIt was great exploring these online services to analyze files and URLs forvirus andmalware. I had problem getting Anubis to work. I use Wepawet to analyzefacebook.com, it came back clean. I used Virustatal to analyzehttp://aladel.net/ andit came back with a lot of malwareI truly enjoy these exercises. I learn so much about the kind of tools thatare outthere to try to keep my network safe.

×