IPS: Snort

Tested systems 1. CentOS 6.4 32-bit, kernel version 2.6.32-358.2.1.el6.i686. 2. CentOS 6.4 32-bit, kernel version 2.6.32.60-grsec (grsec patched kernel) 3. Virtualbox version 4.2.10. 4. Snort engine version 2.9.4. Snort rules version 2940. Reference guide There are numerous installation guide over the internet, however the guide written by nachum234 is by far the best of the … Continue reading IPS: Snort

Building an IDS : installing snorby, suricata and barnyard2

Reference 1: https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Snorby_and_Barnyard2_set_up_guide Reference 2: http://www.aldeid.com/wiki/Suricata/Setting-up-rules Reference 3: https://www.corelan.be/index.php/2011/02/27/cheat-sheet-installing-snorby-2-2-with-apache2-and-suricata-with-barnyard2-on-ubuntu-10-x/ Reference 4: https://github.com/Snorby/snorby/issues/102#issuecomment-1704653 Reference 5: http://www.aldeid.com/wiki/Snorby Disclaimer I claimed no credits for this post, this post is for my own personal reference while installing the components onto the Ubuntu Server 12.04 LTS. No plagiarism is intended! All setup credits go to References above. Please follow the … Continue reading Building an IDS : installing snorby, suricata and barnyard2