This presentation, given at FloCon in 2016, describes Suricata, the world's leading IDS/IPS engine, provides the most versatile network security tool available today. Suricata is the "Swiss Army Knife" for network security monitoring. This training will demonstrate Suricata's dynamic capabilities including
- Introduction to Suricata
- Suricata as a passive DNS probe
- Suricata as an SSL monitor
- Suricata as a malware
- Suricata as a flow probe
At the completion of this training, attendees will gain a greater understanding of Suricata's versatility and power. They will also have the unique opportunity to discuss any questions directly with the core Suricata developers.