Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

intrussion Detection

Please can you tell me the best way to get into security/Intrussion detection the books are not yet available.

Help please I am very keen.

thanks

Oneyor

  • Other Security Subjects
2 REPLIES
Cisco Employee

Re: intrussion Detection

Hello Oneyor,

Information on Cisco IDS may be found at cisco.com/go/ids.

Hope this includes what you are looking for. If not, pls. let me know.

Regards,

-Mun

IDS Product Manager

New Member

Re: intrussion Detection

A large set of books exist on the topic. Look for books by SANS/GIAC especially those by Stephen Northcutt, or attend one of the SANS courses on Intrusion Analysis. A good understanding of IP and how its works is recommended also.

I personally recommend:

- Network Intrusion Detection: An Analysts' Handbook - Stephen Northcutt

- Intrusion Signatures and Analysis - Stephen Northcutt

- Hackers Beware - Eric Cole

- TCP/IP Illustrated Vol 1: The Protocols - W. Richard Stevens

For product IDS documents the best ones I have viewed can be found at:

- http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/index.htm

- http://www.snort.org/documentation.html

Hope this helps,

95
Views
0
Helpful
2
Replies