Assignment 8 - Intrusion Detection

pdf

School

Florida International University *

*We aren’t endorsed by this school

Course

4752

Subject

Information Systems

Date

Dec 6, 2023

Type

pdf

Pages

1

Uploaded by swill325

Report
Assignment 8 Intrusion Detection 1) Compare the following IDS: Snort, Bro and Suricata, focusing on capacities, location (Host or Network based) (a paragraph for each or a table highlighting their difference and similarities. 2) Explain what does it mean when an IDS is located at the Host or the Network. What information can you obtain from each type of IDS? 3) Given the following Sort rule, describe what it does? alert tcp $EXTERNAL_NET any -> 10.200.0.0/24 80 (msg:"WEB-IIS CodeRed v2 root.exe access"; flow:to_server,established; uricontent:"/root.exe"; nocase; classtype:web application-attack; reference:url,www.cert.org/advisories/CA-2001 19.html; sid:1255; rev:7;) Url to assist: Snort Basics: How to Read and Write Snort Rules, Part 1 (hackers-arise.com) 4) Explain the capabilities of Tripwire and compare it to Snort.
Discover more documents: Sign up today!
Unlock a world of knowledge! Explore tailored content for a richer learning experience. Here's what you'll get:
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help

Related Documents

Lab 18 Q & A.docx
Lab Questions.docx
Student Lab - Configuring Hyper-V.docx
Student Lab - Enable Hyper-V in Santa Fe NetLab.docx
Advanced Management Tools Q&A.docx
SecuringS3.docx
Wireshark_Intro_v8.0.docx
Assignment 7 - Preparing for Atatcks.docx
ExploreConfigInfo1.png
week 3 compliance.docx
week 4 compliance final.docx
Excel365-Project-Assignment (1) (2).docx