search

nikhilnayak98 / sand

An Enterprise Security Network Architecture
Apache License 2.0
0 stars 1 forks source link

### SNORT + BASE #1

Closed nikhilnayak98 closed 2 years ago

nikhilnayak98 commented 2 years ago

Intrusion Detection System

  1. Monitor traffic between Enterprise and Extranet Zones.
  2. Prevent network scanning.
  3. Prevent ARP spoofing.


Intrusion Prevention System

Monitor all traffic at Edge Router.

Write snort rules to prevent Link

  1. ICMP DOS attack (ping of death)
  2. ARP Flood
  3. BlackNurse ping attack
  4. Sockstress TCP DOS attack
  5. TCP SYN Flood
  6. ICMP Echo Flood
  7. TCP ACK Flood
  8. TCP RST Flood
  9. TCP XMAS Flood
  10. UDP Flood
  11. Slowloris
nikhilnayak98 commented 2 years ago

Not gonna bother doing this shit.