[prev in list] [next in list] [prev in thread] [next in thread]
List: oisf-devel
Subject: [Oisf-devel] NEW Signature Development Training at SuriCon!
From: Kelley Misata <kmisata () oisf ! net>
Date: 2017-07-24 17:59:37
Message-ID: CAEoU0e_ien=trh0S3Ta504YOk4fTzSNph-UnNimXwa5wxexXrA () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
NEW for SuriCon <https://suricon.net> 2017!
In addition to our standard 2-day Suricata training, we have just added
another 2-day event, *Practical Signature Development for Suricata,* on
November 13 -14, 2017 - just prior to SuriCon <https://suricon.net>! This
training is being led by the newest members of the OISF core team, Jason
<https://oisf.net/core-team/>William <https://oisf.net/core-team/>s and Jack
Mott <https://oisf.net/core-team/>.
*What will you get out of this training? *
In "Signature Development for Suricata" we will teach expert methods and
techniques for writing network signatures to efficiently detect the
greatest threats facing organizations today. Attendees will gain invaluable
information and knowledge including the configuration, usage, architecture,
traffic analysis fundamentals, signature writing, and testing of Suricata
IDS. Attendees will be given handouts to help them develop and read with
IDS signatures. Lab exercises will train attendees how to analyze and
interpret hostile network traffic into agile IDS rules for detecting
threats, including but not limited to: Exploit Kits, Ransomware, Phishing
Attacks, Malicious Documents, Crimeware Backdoors, Targeted Threats, and
more. Attendees will leave the class armed with the knowledge of how to
write quality IDS signatures for their environment, enhancing their
organization's ability to respond and detect threats. The class has been
updated for the latest Suricata 4.0 IDS features while still retaining
backwards compatibility with older Suricata versions. The class is very
hands-on with a robust workbook featuring exercise
walkthroughs/explanations and a physical copy of the material presented.
The class exercises feature paths for those that are brand new to writing
IDS signatures and signature experts who dream in pcre.
*Day 1*
Network and Malware Analysis Fundamentals
IDS Engine Fundamentals
Rule Writing Fundamentals
Writing Signatures for DNS
Writing Signatures for HTTP
*Day 2*
Advanced Rule Features
Writing Signatures for SSL / TOR
Detecting Phishing Communications
Detecting Ransomware Communications
Detecting Malicious Documents
Detecting Exploit Kit Activity
Detecting Targeted Threats
*Register for SuriCon and get 20% off the price of this training!*
*Space is limited!*
*For details and registration: https://suricata_events.eventbrite.com
<https://suricata_events.eventbrite.com>*
--
*Kelley Misata, Ph.D.*
*Executive Director*
*kmisata@oisf.net <kmisata@oisf.net>*
*twitter:@OISFoundation*
*www.oisf.net <http://www.oisf.net>*
[Attachment #5 (text/html)]
<div dir="ltr"><div>NEW for <a href="https://suricon.net" \
target="_blank">SuriCon</a> 2017! </div><div><br></div><div>In addition to our \
standard 2-day Suricata training, we have just added another 2-day event, \
<i>Practical Signature Development for Suricata,</i> on November 13 -14, 2017 - just \
prior to <a href="https://suricon.net" target="_blank">SuriCon</a>! This training is \
being led by the newest members of the OISF core team, <a \
href="https://oisf.net/core-team/" target="_blank">Jason </a><a \
href="https://oisf.net/core-team/" target="_blank">William</a>s and <a \
href="https://oisf.net/core-team/" target="_blank">Jack Mott</a>.</div><div><div \
style="font-size:12.800000190734863px"><br></div><div \
style="font-size:12.800000190734863px"><b>What will you get out of this training? \
</b></div><div style="font-size:12.800000190734863px"><b><br></b></div><div \
style="font-size:12.800000190734863px">In "Signature Development for \
Suricata" we will teach expert methods and techniques for writing network \
signatures to efficiently detect the greatest threats facing organizations today. \
Attendees will gain invaluable information and knowledge including the configuration, \
usage, architecture, traffic analysis fundamentals, signature writing, and testing of \
Suricata IDS. Attendees will be given handouts to help them develop and read with IDS \
signatures. Lab exercises will train attendees how to analyze and interpret hostile \
network traffic into agile IDS <span \
class="m_6054577879485054410gmail-il">rules</span> for detecting threats, including \
but not limited to: Exploit Kits, Ransomware, Phishing Attacks, Malicious Documents, \
Crimeware Backdoors, Targeted Threats, and more. Attendees will leave the class armed \
with the knowledge of how to write quality IDS signatures for their environment, \
enhancing their organization's ability to respond and detect threats. The class has \
been updated for the latest Suricata 4.0 IDS features while still retaining backwards \
compatibility with older Suricata versions. The class is very hands-on with a robust \
workbook featuring exercise walkthroughs/explanations and a physical copy of the \
material presented. The class exercises feature paths for those that are brand new to \
writing IDS signatures and signature experts who dream in pcre.</div><div \
style="font-size:12.800000190734863px"><br></div><div \
style="font-size:12.800000190734863px"><br></div><div \
style="font-size:12.800000190734863px"><b>Day 1</b></div><div \
style="font-size:12.800000190734863px">Network and Malware Analysis \
Fundamentals</div><div style="font-size:12.800000190734863px">IDS Engine \
Fundamentals</div><div style="font-size:12.800000190734863px"><span \
class="m_6054577879485054410gmail-il">Rule</span> Writing Fundamentals</div><div \
style="font-size:12.800000190734863px">Writing Signatures for DNS</div><div \
style="font-size:12.800000190734863px">Writing Signatures for HTTP</div><div \
style="font-size:12.800000190734863px"><br></div><div \
style="font-size:12.800000190734863px"><b>Day 2</b></div><div \
style="font-size:12.800000190734863px">Advanced <span \
class="m_6054577879485054410gmail-il">Rule</span> Features</div><div \
style="font-size:12.800000190734863px">Writing Signatures for SSL / TOR</div><div \
style="font-size:12.800000190734863px">Detecting Phishing Communications</div><div \
style="font-size:12.800000190734863px">Detecting Ransomware Communications</div><div \
style="font-size:12.800000190734863px">Detecting Malicious Documents</div><div \
style="font-size:12.800000190734863px">Detecting Exploit Kit Activity</div><div \
style="font-size:12.800000190734863px">Detecting Targeted Threats</div></div><div \
style="font-size:12.800000190734863px"><br></div><div \
style="font-size:12.800000190734863px"><b>Register for SuriCon and get 20% off the \
price of this training!</b></div><div \
style="font-size:12.800000190734863px"><b><br></b></div><div \
style="font-size:12.800000190734863px"><b>Space is limited!</b></div><div \
style="font-size:12.800000190734863px"><b><br></b></div><div><b><span \
style="font-size:12.800000190734863px">For details and registration</span><font \
face="arial, helvetica, sans-serif">: <span \
style="color:rgb(69,73,78);letter-spacing:0.5px"> </span><span \
id="m_6054577879485054410gmail-organizer_url" \
style="color:rgb(69,73,78);letter-spacing:0.5px"><a \
href="https://suricata_events.eventbrite.com" \
target="_blank">https://<wbr>suricata_events.eventbrite.com</a></span></font></b></div><div><br></div>-- \
<br><div class="m_6054577879485054410gmail_signature"><div dir="ltr"><div><div \
dir="ltr"><div><div dir="ltr"><font size="1" color="#0000ff"><b>Kelley Misata, \
Ph.D.</b></font><div><font size="1" color="#0000ff"><b>Executive \
Director</b></font></div><div><font size="1" color="#0000ff"><b><a \
href="mailto:kmisata@oisf.net" \
target="_blank">kmisata@oisf.net</a></b></font></div><div><font size="1" \
color="#0000ff"><b>twitter:@OISFoundation</b></font></div><div><font size="1" \
color="#0000ff"><b><a href="http://www.oisf.net" \
target="_blank">www.oisf.net</a></b></font></div><div><br></div></div></div></div></div></div></div>
</div>
[Attachment #6 (text/plain)]
_______________________________________________
Suricata IDS Devel mailing list: oisf-devel@openinfosecfoundation.org
Site: http://suricata-ids.org | Participate: http://suricata-ids.org/participate/
List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel
Redmine: https://redmine.openinfosecfoundation.org/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic