Writing Snort Rules

Snort is an open source network intrusion detection system and intrusion prevention system. This course will teach you how to write your own custom rules in Snort to detect specific traffic.

Would you like to detect potential threats to your network? Snort is an open source network intrusion detection system and intrusion prevention system that includes the ability to write custom rules. In this course, Writing Snort Rules, you’ll learn to write your own custom rules for Snort to detect specific traffic. First, you’ll explore the basic Snort rule structure. Next, you’ll discover how to leverage additional options to refine your traffic detection. Finally, you’ll learn how to further optimize your rules with new options in Snort version 3. When you’re finished with this course, you’ll have the skills and knowledge of Snort needed to write your own rules.

• Course Overview 1min
• Writing Your First Snort Rule 24mins
• Creating Custom Rules with Rule Options 30mins
• Optimizing Rules with New Features 28mins