Securing Cisco Networks with Snort Rule Writing Best Practices v2.0 (SSFRULES) – Outline

Detailed Course Outline

• Module 1: Welcome to the Sourcefire Virtual Network
• Module 2: Basic Rule Syntax and Usage
• Module 3: Rule Optimization
• Module 4: Using PCRE in Rules
• Module 5: Using Byte_Jump/Test/Extract Rule Options
• Module 6: Protocol Modeling Concepts and Using Flowbits in Rule Writing
• Module 7: Case Sudies in Rule Writing and Packet Analysis
• Module 8: Rule Performance Monitoring
• Module 9: Rule Writing Practiceal Labs, Exercises, and Challenges