Network Security Monitoring With Suricata

preview_player
Показать описание
In this lab i will show you how to setup Suricata IDS to monitor WAN Network traffic

Links:

  1. I.T Security Labs
  2. sudicata
  3. ids
  4. ips
  5. security onion
  6. cyber
Рекомендации по теме
Network Security Monitoring 0:00:58

Network Security Monitoring with Suricata: Course Preview

Network Security Monitoring 0:09:37

Network Security Monitoring With Suricata

Installing & Configuring 0:27:16

Installing & Configuring Suricata

Introduction To Suricata 0:11:13

Introduction To Suricata IDS

Network Intrusion Detection 1:21:41

Network Intrusion Detection System (NIDS) Project Tutorial | Suricata & Zeek Tutorial | Filebeat

Suricata Network IDS/IPS 0:27:30

Suricata Network IDS/IPS Installation, Setup, and How To Tune The Rules & Alerts on pfSense 2020

Network Intrusion Detection 0:16:46

Network Intrusion Detection with Suricata

Open-Source Security: Analyzing 1:09:13

Open-Source Security: Analyzing Network Traffic with Suricata

Network Security Monitoring 0:28:27

Network Security Monitoring Part 4 - Zeek & Suricata

An introduction to 0:32:54

An introduction to Network Security Monitoring (NSM) (and how to do it yourself)

Integrating Suricata With 0:18:28

Integrating Suricata With Wazuh For Log Processing

18 - Intrusion 0:55:42

18 - Intrusion Analysis and Threat Hunting with Suricata

Suricata IDS | 0:14:29

Suricata IDS | Network Intrusion Detection System | 2022

🔴 Detect Lateral 0:53:58

🔴 Detect Lateral Movement in Microsoft Environment with Suricata (Part 1)

Enhancing Suricata Performance 0:32:36

Enhancing Suricata Performance with a DPI Engine

How we use 0:39:01

How we use Suricata at QA Cafe

IDS/IPS with Bro 0:48:32

IDS/IPS with Bro and Suricata - Using SecurityOnion (ECInfoSec)

Intro: pfSense & 0:10:47

Intro: pfSense & Suricata: Your Ultimate Network Guardian

Mastering Network Security: 0:20:06

Mastering Network Security: Configuring Suricata on pfSense with SNORT GPL Rules

Intrusion Detection with 0:52:16

Intrusion Detection with Suricata | Blue Team Series with Hackersploit

pfSense Installation with 0:48:29

pfSense Installation with Suricata Setup - Intrusion Detection or Network Monitoring | IPS or IDS

WEBINAR: Network Threat 1:05:48

WEBINAR: Network Threat Hunting with Suricata and SELKS

How To Setup 0:29:32

How To Setup Suricata Intrusion Detection System | Security SIEM Detection Lab Setup #5

Webinar - Suricata 0:53:24

Webinar - Suricata and Splunk: Tap into the Power of Suricata with the new Splunk App

Комментарии
Автор

Wow I never thought of running a mirror just for scanning. That's awesome 😎

ParkerSOY
Автор

Good video! You explain things really clearly, keep it up!

AliciaSykes
Автор

Nice vid. Is there a step step guide? i mean showing us how you install, configure your installation.

apigoterry
Автор

So I recently wanted to learn more about cybersecurity and I love monitoring my network. I have sensors for my PC and I have started lightly with Glasswire as my networking monitoring and Wireshark when I want to get technical. So I have been very curious about log management and how to spot important clues and that led me to SIEM.I'm going to subscribe to you since I feel I can learn alot from you and which programs I can use that is free and what programs that most used in the enterprise world.
I have a few questions if you dont mind.
Do you have any cybersecurity or Infosec sites I can read articles and keep up with the cybersec world?
Does the SIEM setup require many cores or does it take alot of utilization of the CPU(s)?
And what would be the ideal monitor setup for a SIEM command center?
What is the most stable or good linux distro to do SIEM on? How is Security Onion to use as a start vs debian or any other?
I dont have access to Esxi, I have Server 2016 standard so I can make several VM's. Does it work with Hyper-V? I mean should since its a hypervisor.
So I dont have Cisco Meraki to configure like you do in the video you made in January 2020. I havent used Pfsense either since I if I want to check out pfsense I want to rackmount it @home. So what can I use instead of the Meraki? to the Elastic SIEM?
Do I have to have a HW FW or can I use a mirror port on my Cisco RV325 and mirror it back on my WS/any pc?

andersgjerlw
Автор

Hello. I am using a router running openwrt and setting up port mirror. How to Suricata Receive Traffic from Router | As it currently only receives traffic from the NIC vmware. Thank you.

TungNguyen-wloe
Автор

Wait. What should I do if I don't know how to copy and paste?

stephenc
Автор

Thanks for the video. I have a problem with the installation of suricata. When i run make install i get an error message: "No rule to make target 'install' Can you help please?

lauraemah
Автор

I hate to be negative, but I strongly get the impression that the first time you've ever used this product was 5 minutes before creating the video

davidc