Intrusion Detection with SNORT: Advanced IDS Techniques Using SNORT, Apache, MySQL, PHP, and ACID
| Author | : | |
| Rating | : | 4.93 (810 Votes) |
| Asin | : | 0131407333 |
| Format Type | : | paperback |
| Number of Pages | : | 288 Pages |
| Publish Date | : | 2016-12-05 |
| Language | : | English |
DESCRIPTION:
The text of this book is Open Source licensed . Now, Rafeeq Ur Rehman explains and simplifies every aspect of deploying and managing Snort in your network. You'll discover how to monitor all your network traffic in real time; update Snort to reflect new security threats; automate and analyze Snort alerts; and more. An expert introduction to intrusion detection and the role of SnortWriting and updating Snort rules to reflect the latest attacks and exploitsContains detailed coverage of Snort plug-ins, preprocessors, and output modulesLogging alerts to a MySQL databaseUsing ACID to search, process, and analyze security alertsUsing SnortSnarf to analyze Snort log filesXML support for Sno
Karel M Baloun said Good IDS|Snort book. This book is an effective introduction to Intruder Detection, demonstrating how popular open-source tools can be used. I found the code samples, table, diagrams and screenshots to be clear and useful. I learned what I'd hoped to learn and feel empowered to set up an IDS myself. Plenty of links and resources when I want to learn more.I read a few of the other reviews here after I read the book especially Richard B's. I noticed some of the same techinical mistakes, but don't feel that they are a big deal. As a sr. software engineer and techinical editor, I always read critically, just mentally note them and continue. . Weakest of the Snort books published thus far "Intrusion Detection with Snort: Advanced IDS, etc." (IDWS) was the second of this year's intrusion detection books I've reviewed. The first was Tim Crothers' "Implementing Intrusion Detection Systems" (Weakest of the Snort books published thus far Richard Bejtlich "Intrusion Detection with Snort: Advanced IDS, etc." (IDWS) was the second of this year's intrusion detection books I've reviewed. The first was Tim Crothers' "Implementing Intrusion Detection Systems" (4 stars). I was disappointed by IDWS, since I have a high opinion of Prentice Hall and the new "Bruce Perens' Open Source Series." (I'm looking forward to the book on CIFS, for example.) IDWS read poorly and doesn't deliver as much useful content as the competing Syngress book "Snort 2.0."The most difficult aspect of reading IDWS is the author's grammar, particularly his avoidance of using definitive articles like "t. stars). I was disappointed by IDWS, since I have a high opinion of Prentice Hall and the new "Bruce Perens' Open Source Series." (I'm looking forward to the book on CIFS, for example.) IDWS read poorly and doesn't deliver as much useful content as the competing Syngress book "Snort 2.0."The most difficult aspect of reading IDWS is the author's grammar, particularly his avoidance of using definitive articles like "t. "Great hands-on coverage of snort" according to Scott M.. I really like books that are to the point and filled with examples. This is such a book. It enables the reader to get up and going quickly. The reader is guided through installation and each component of SNORT. Once the basics are covered, the author moves to more advanced topics and integrating other tools like Apache, MySQL, and ACID. All told, it presents an excellent approach to building an IDS.
Network security has become an important part of corporate IT strategy and safeguarding all the nooks and crannies of your network can be timely and expensive. This book provides information about how to use free Open Source tools to build and manage an Intrusion Detection System. Rehman provides detailed information about using SNORT as an IDS and using Apache, MySQL, PHP and ACID to analyze intrusion data. According to NSS, SNORT, which was the sole Open Source freeware product tested, clearly outperformed the proprietary products.. The book contains custom scripts, real-life examples for SNORT, and to-the-point information about installing SNORT IDS so readers can build and run their sophisticated intrusion detection systems.SNORT is your network's packet sniffer that monitors network traffic in real time, scrutinizing each packet closely to detect a dangerous payload or suspicious anomalies.NSS Group, a Europe
His books include The Linux Development Platform; Solaris 8 Training Guide (310-043): Network Administrator Certification; and HP Certified: HP-UX System Administration. He is a contributing writer for SysAdmin Journal and Linux Journal.. RAFEEQ UR REHMAN is founding director of Argus Network Security Services, Inc. He is an HP Certified Sys