Objective: Set up and monitored network traffic for threats using Security Onion, Sguil, and Squert.
- Security Onion: Platform for network security monitoring.
- Zenmap: Visual network scanning.
- Squert: Tool for visualizing IDS alerts.
- Intrusion Detection Systems (IDS): Distinguishes between network-based (NIDS) and host-based (HIDS) systems.
- Alert Monitoring: Analyzing alerts from traffic scans to detect vulnerabilities.
- Network Scans: Conducted using Zenmap for port identification.
- Traffic Analysis: Used Squert to monitor and filter network traffic for security threats.
- Learned IDS fundamentals and practical monitoring techniques.
- Hands-on experience with tools for real-time security event detection.