Home > Computers & Technology > Security & Encryption

Open Source IDS and Logging - Generation 2 Suricata And Central Syslog Appliance (Reality Check Series Book 7) by Tony Miedaner

Author:Tony Miedaner [Miedaner, Tony] , Date: December 11, 2018 ,Views: 124

Open Source IDS and Logging - Generation 2 Suricata And Central Syslog Appliance (Reality Check Series Book 7) by Tony Miedaner

Author:Tony Miedaner [Miedaner, Tony]
Language: eng
Format: epub
Published: 2018-07-25T23:00:00+00:00

Promiscuous mode

/etc/rc3.d/S110promscuous

Signature feed

We use the ThreatExpert feed; the script to do this is included in Appendix A, Suricata-downloads.sh.

IP reputation

We use multiple sources for our bad IP feed, see Appendix A, iprep-listsv0.sh .

Local rules

Sample local rules are in Appendix A (local.rules).

Monitoring

We monitor the system for the Suricata and sec services. See Appendix A for start-Suricata.sh script information.

Simple Event Correlator

Startup.

Start using systemd.

Rules

Since rules should be customized we only provide a sample in Appendix A, Sec Rule Sample.

Monitoring

See start-sec.sh in Appendix A. This file is run in the cron periodically for monitoring.

syslog-ng

syslog-ng.conf

syslog-ng.conf is show in Appendix A.

Download

Open Source IDS and Logging - Generation 2 Suricata And Central Syslog Appliance (Reality Check Series Book 7) by Tony Miedaner.epub

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.

Categories

Linux & Unix	iPhone & iOS
Macintosh	Android
Business Technology	Certification
Computer Science	Databases & Big Data
Digital Audio, Video & Photography	Games & Strategy Guides
Graphics & Design	Hardware & DIY
History & Culture	Internet & Social Media
Mobile Phones, Tablets & E-Readers	Networking & Cloud Computing
Operating Systems	Programming
Programming Languages	Security & Encryption
Software	Web Development & Design

Popular ebooks

Practical Threat Detection Engineering by Megan Roddie & Jason Deyalsingh & Gary J. Katz(6762)
Effective Threat Investigation for SOC Analysts by Yahia Mostafa;(6599)
Practical Memory Forensics by Svetlana Ostrovskaya & Oleg Skulkin(6324)
Machine Learning Security Principles by John Paul Mueller(6289)
Attacking and Exploiting Modern Web Applications by Simone Onofri & Donato Onofri(5968)
Operationalizing Threat Intelligence by Kyle Wilhoit & Joseph Opacki(5928)
Solidity Programming Essentials by Ritesh Modi(4053)
Microsoft 365 Security, Compliance, and Identity Administration by Peter Rising(3693)
Operationalizing Threat Intelligence by Joseph Opacki Kyle Wilhoit(3421)
Mastering Python for Networking and Security by José Manuel Ortega(3358)
Future Crimes by Marc Goodman(3351)
Mastering Azure Security by Mustafa Toroman and Tom Janetscheck(3337)
Blockchain Basics by Daniel Drescher(3306)
Learn Computer Forensics - Second Edition by William Oettinger(3182)
Incident Response with Threat Intelligence by Roberto Martínez(2908)
Mobile App Reverse Engineering by Abhinav Mishra(2889)
Mastering Bitcoin: Programming the Open Blockchain by Andreas M. Antonopoulos(2873)
The Code Book by Simon Singh(2832)
From CIA to APT: An Introduction to Cyber Security by Edward G. Amoroso & Matthew E. Amoroso(2785)
Building a Next-Gen SOC with IBM QRadar: Accelerate your security operations and detect cyber threats effectively by Ashish M Kothekar(2783)