Snort Signatures, IDS Tuning, and Blocking
Often a security analyst will need to update the existing IDS/IPS (Intrusion Detection/Prevention System) to handle new threats. This lab simulates creating a reject and drop rule for a specific traffic type, and alerting the Snoby SEIM when they hit.

Overview
Often a security analyst will need to update the existing IDS/IPS (Intrusion Detection/Prevention System) to handle new threats. This lab simulates creating a reject and drop rule for a specific traffic type, and alerting the Snoby SEIM when they hit.

Learning Partner

CYBRScore
Cybersecurity Technical Hands-on Labs