The document outlines a project for implementing Snort as an intrusion prevention system on pfSense to defend against HTTP brute force attacks. It details the phases of analysis, development, testing, and documentation, along with steps for setting up the environment, configuring Snort, and testing its effectiveness. A report is to be created summarizing the findings and processes undertaken in this project.

1. Snort IDS/IPS on PFSense
Huda Seyam
7/6/2020

2. Project idea

3. HTTP Brute Force Attack

4. Waterfall Model 1 Analysis & Design
2 Development
3 Testing
4 Documentation

5. Analysis & Design
1. Draft Environment
2. Install needed ISO

6. Environment

7. Development
1. Setup the environment
2. Install Snort on PFSense as an Intrusion
Prevention System
3. Configure Snort to defend against the http-
brute force attack
2

8. PFSense

9. OUR WORK
1. Setup virtual switches in VMware
Workstation
2. Setup victim webserver machine
3. Setup attacker machine
4. Setup normal user machine
5. Setup PFSense Firewall
Setup the environment

10. Snort

11. OUR WORK
1. Install snort package
2. Download Snort VRT rules
Install Snort on PFSense
Configure Snort
1. Configure snort on interfaces to
defend against the http-brute force
attack

12. Testing
1. Perform http-brute force attack
2. Checked Alert and blocked host
3

13. OUR WORK
By use Nmap tool on kali Linux
Perform http-brute
force attack

14. Documentation
1. Write report
4

15. References
https://digitalave.github.io/spring/2019
/12/16/How_To_Setup_Intrusion_Detecti
on_Using_Snort_on_PfSense.html
https://www.snort.org/
https://www.pfsense.org/
https://owasp.org/www-
community/controls/Blocking_Brute_Fo
rce_Attacks
https://hub.packtpub.com/brute-
forcing-http-applications-and-web-
applications-using-nmap-tutorial/

16. THANK YOU