Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Applied Network Security

You're reading from   Applied Network Security Proven tactics to detect and defend against all kinds of network attack

Arrow left icon
Product type Paperback
Published in Apr 2017
Publisher
ISBN-13 9781786466273
Length 350 pages
Edition 1st Edition
Arrow right icon
Authors (3):
Arrow left icon
Michael McLafferty Michael McLafferty
Author Profile Icon Michael McLafferty
Michael McLafferty
Warun Levesque Warun Levesque
Author Profile Icon Warun Levesque
Warun Levesque
Arthur Salmon Arthur Salmon
Author Profile Icon Arthur Salmon
Arthur Salmon
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Preface 1. Introduction to Network Security FREE CHAPTER 2. Sniffing the Network 3. How to Crack Wi-Fi Passwords 4. Creating a RAT Using Msfvenom 5. Veil Framework 6. Social Engineering Toolkit and Browser Exploitation 7. Advanced Network Attacks 8. Passing and Cracking the Hash 9. SQL Injection 10. Scapy 11. Web Application Exploits 12. Evil Twins and Spoofing 13. Injectable Devices 14. The Internet of Things 15. Detection Systems 16. Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra 17. Offensive Security and Threat Hunting

Lab 3-execute Snort

Execute Snort from command line, as mentioned following. This activates Snort so it can start protecting your system:

# snort -c /etc/snort/snort.conf -l /var/log/snort/

Here, -c for rules file and -l for log directory.

Show log alert

The following is the example of a Snort alert for this ICMP rule:

root@vishnu:~# head /var/log/snort/alert 
[**] [1:2925:3] INFO web bug 0x0 gif attempt [**]
[Classification: Misc activity] [Priority: 3] 
12/02-17:08:40.479756 107.20.221.156:80 -> 192.168.1.64:55747
TCP TTL:42 TOS:0x0 ID:14611 IpLen:20 DgmLen:265 DF
***AP*** Seq: 0x6C1242F9 Ack: 0x74B1A5FE Win: 0x2E TcpLen: 32
TCP Options (3) => NOP NOP TS: 1050377198 1186998
[**] [1:368:6] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime