 | |
Security: Certification: GIAC: Certified Intrusion Analyst (GCIA): SANS Intrusion Detection In-Depth
|  | | | Average Rating: 9.33/10
(# Rating Votes: 3 | Rate This Course | Contribute a Review )
Short Description:
This track offers its participants practical, working knowledge in intrusion detection and traffic analysis.
Full Description:
This exciting, hands-on track offers its participants practical, working knowledge in intrusion detection and traffic analysis, taught by top practitioners/authors in the field. This is the most advanced program in network intrusion detection that has ever been taught. All of the courses are either new or just updated to reflect the latest attack patterns. This series is jam-packed with network traces and analysis tips.
The emphasis of this track is on increasing students' understanding of the workings of TCP/IP, methods of network traffic analysis and one specific network intrusion detection system - Snort. This track is not a comparison or demonstration of multiple NIDS.
Instead, the knowledge/information provided here allows students to better understand the qualities that go into a sound NIDS and the "why's" behind them, and thus, to be better equipped to make a wise selection for their site's particular needs.
This is a fast-paced track and students are expected to have a basic working knowledge of TCP/IP & Hex (see TCP/IP & Hex Quizzes) in order to fully grasp/ comprehend the topics that will be discussed. Although others may benefit from this track, it is most appropriate for students who are or who will become intrusion detection analysts. Audience members generally range from novices with some TCP/IP background all the way to seasoned analysts. The challenging, hands-on exercises are specially designed to be valuable for all experience levels. We strongly recommend that you spend some time getting familiar with TCPdump, WINdump or another network analyzer output before coming to class.
This track can be used to prepare for the GIAC Certified Intrusion Analyst (GCIA) certification.
Who Should Attend:
Intrusion Detection Analysts (All Levels)
Network Engineers
System, Security and Network Administrators
Hands-on Security Managers
A Sampling of Topics
TCP/IP
Fragmentation
ICMP
Microsoft Networking and Security
Client and Server Interaction
Routing
IPSec
Hands-On TCPdump Analysis
Mechanics of Running TCPdump
General Network Traffic Analysis
Hands-On Snort Usage
Various Modes of Running Snort
Writing Snort Rules
IDS Signatures and Analysis
Intrusion Detection Architecture
Intrusion Detection Analysis
Traffic and External
Duration:
6 Days
Price:
$3,145
Submitted by: admin
Hits: 0
SANS Intrusion Detection In-Depth Course Web Page
| | | |
