Average Rating: 0.00/10
(# Rating Votes: 0 | Rate This Course | Contribute a Review )
Short Description:
Throughout this course, you gain hands-on experience using several IDSs to identify and respond to intruder attacks.
Full Description:
You Will Learn How To
Detect and respond to network- and host-based intruder attacks
Integrate intrusion detection systems (IDSs) into your current network topology
Identify methods hackers use to break into network systems
Analyze network traffic and detect attacks using the latest tools and techniques
Deploy and manage several IDSs
Create an effective response strategy based on your organizational needs
Throughout this course, you gain extensive hands-on experience using several IDSs to identify and respond to intruder attacks. Exercises include:
Detecting network attacks with ISS RealSecure, NFR NID, Cisco Secure Integrated Software and Snort
Generating attacks with Blade Software's IDS Informer
Building Linux tools such as Nmap, SYN flooder and Snort
Writing a filter with NFR Ncode
Performing forensic analysis of a DEFCON trace with Ethereal and Snort
Integrating IDS with HP OpenView, Firewall-1 NG and syslog
Catching NetBus hack with ISS RealSecure Server Sensor
Creating and replaying test packets with Whisker, Ethereal and TCPreplay
Tuning IDS via RealSecure techniques
Detecting eEye Retina Scanner audit
Course Benefits
With the growing reliance on e-commerce, network-based services and the Internet, organizations are faced with an ever-increasing challenge to protect their systems from attacks. IDSs are the latest and most powerful tools used for alerting the analyst to network- and host-based exploits.
This hands-on course provides knowledge of how attackers break into systems and networks, and how an IDS can play a key role in detecting and responding to these events. Using Windows and UNIX-based tools, you learn to configure, deploy and tune an IDS to determine what exploits are occurring in your organization.
Who Should Attend
This course is valuable for those involved in maintaining network and system security. Course 468, "Introduction to System and Network Security," or equivalent experience is assumed. Working knowledge of TCP/IP is also assumed.
Duration:
4 Days
Price:
$2,345
Submitted by: admin
Hits: 0
Learning Tree's Deploying Intrusion Detection Systems Course Web Page
|
