PLU | Network Security Monitoring (NSM) With Security Onion (2018 EN)

Company: Pluralsight
Author: Guillaume Ross
Full Title: Network Security Monitoring (NSM) With Security Onion
Year: 2018
Language: English
Genre: Educational: Networking Security
Skill Level: Beginner
Price: -
-
Files: MP4 (+ Slides .PDF)
Time: 02:19:31
Video: AVC, 1280 x 720 (1.778) at 30.000 fps, 240 kbps
Audio: AAC at 86 Kbps, 2 channels, 44.1 KHz



Security Onion is a great Linux distribution built for Network Security Monitoring (NSM). This course will teach you the technical aspects of NSM, as well as the triage process that must be followed, using simulated attacks.

Network security monitoring is a skill that is at the core of the broad set of skills security professionals can master to prevent, detect, and respond to attacks which are so common today. In this course, Network Security Monitoring (NSM) with Security Onion, you will learn about network security monitoring as well as how to use Security Onion to perform network security monitoring. First, you will learn what NSM is. Next, you will explore where you can deploy network sensors, how to handle the triage process by generating real attacks, how to detect attacks, and how to deploy and operate a Security Onion environment. Finally, you will discover how you can perform network security monitoring in a production environment, and how to deploy your own Security Onion environment and generate attacks to dissect with it. By the end of this course, you will have everything you need to further improve your skills as a security analyst, security engineer, or security architect. These skills are easily transferable to other network security monitoring products, such as commercial ones commonly found in the enterprise.


Lessons:
1. Course Overview
01. Course Overview
2.Network Security Monitoring: Why and When?
02. Introduction
03. Why Do NSM?
04. Getting Started with NSM
05. Security Onion - A Linux Distribution for NSM
06. Summary
3. Location Location Location: Choosing Where to Monitor the Network
07. Choosing Where to Monitor the Network
4. What Is Security Onion?
08. Module Intro
09. Installing Security Onion
10. Security Onion Tools Overview
11. Security Onion Tools Walkthrough
5. Detecting Attacks at the Network Layer
12. Module Intro
13. Simulating Attacks: Importing Sample PCAPs
14. Simulating Attacks: Port Scanning
15. Simulating Attacks: Brute Force Attacks
16. Analysis and Triage Summary
17. Alert Classification
18. Manual Triage
19. Automating and Tuning
20. Disabling Rules
21. Working with Thresholds
22. Digging for Files Summary
23. Bro: Extracted Files
24. Bro: Logs and Dashboards
25. Module Summary
6. Operationalizing Security Onion
26. Considerations for Operations
27. Automated Setup and Indices Maintenance
28. Updating Software, Rules, and Threat Data
29. Module Summary
7. Wrapping Up
30. Next Steps
31. Tools Summary
32. Course Summary

Our members see more. Join us!
-------------
Our members see more. Join us!