Snort for Dummies

Charlie Scott is an Information Security Analyst for the City of Austin, where he helps maintain the City's network security infrastructure and helps analyze intrusion detection data. He has nearly ten years of experience in the Internet industry and has been an avid user of open source security software that entire time. Charlie is a Certified Information Systems Security Professional (CISSP) and a Cisco Certified Network Professional (CCNP). Bert Hayes is a Security Technical Analyst for the State of Texas, where he maintains network security for a medium sized agency. In Bert's ten years of IT industry experience, he has done everything from managing a corporate IT shop during a successful IPO to performing white hat penetration tests for corporate and government offices. He has long been a proponent of open source solutions, and is a Red Hat Certified Engineer (RHCE). Paul Wolfe is an independent information security consultant and author, specializing in open source security.

Introduction. Part I: Getting to Know Snort and Intrusion Detection. Chapter 1: Looking Up Snort's Nose. Chapter 2: Fitting In Snort. Chapter 3: Readying Your Preflight Checklist. Chapter 4: Makin' Bacon: Installing Snort for Linux. Chapter 5: Installing Snort and MySQL for Windows. Part II: Administering Your Snort Box. Chapter 6: Snorting Through Logs and Alerts. Chapter 7: Adding Visuals and Getting Reports. Chapter 8: Making Your Own Rules. Chapter 9: What, Me Worry? Chapter 10: Dealing with the Real Thing. Part III: Moving Beyond the Basics. Chapter 11: Reacting in Real Time. Chapter 12: Keeping Snort Up to Date. Chapter 13: Filling Your Farm with Pigs. Chapter 14: Using the Barnyard Output Tool. Part IV: The Part of Tens. Chapter 15: Ten Cool Tools for Snort. Chapter 16: Ten Snort Information Resources. Appendix A: What's On the CD-ROM. Index.