Snort is a free lightweight network intrusion detection system for both UNIX and Windows.
In this article, let us review how to install snort from source, write rules, and perform basic testing.
This short tutorial shows you how to download and install Bison (GNU Parser Generator) on Ubuntu Linux Server. The process is very simple. For this tutorial, I'll be installing Bison version 2.3. Linux kernel is 2.6.15-26-powerpc. I have used a Mac Mini (powerpc/ppc architecture). GCC version number is 4.0.3. This short tutorial shows you how to download and install Bison (GNU Parser Generator) on Ubuntu Linux Server. The process is very simple. For this tutorial, I'll be installing Bison version 2.3. Linux kernel is 2.6.15-26-powerpc. I have used a Mac Mini (powerpc/ppc architecture). GCC version number is 4.0.3. Kali Linux is a specialized Linux distribution focusing on penetration testers and digital forensic Kali Linux have many pre-installed tools for cyber security. There are many ways to install Kali.
1. Download and Extract Snort
![Kali Kali](/uploads/1/2/6/5/126511833/552170113.jpg)
Download the latest snort free version from snort website. Extract the snort source code to the /usr/src directory as shown below.
Today you'll learn the Kali Linux live USB installation procedure and how boot Kali Linux from USB. By the end of this post, you'll have a USB drive with Kali Linux pre-installed that you can boot from any computer. You'll also learn the steps on how to boot your Windows or Mac computer from a USB.
Note: We also discussed earlier about Tripwire (Linux host based intrusion detection system) and Fail2ban (Intrusion prevention framework)
2. Install Snort
Before installing snort, make sure you have dev packages of libpcap and libpcre.
Follow the steps below to install snort.
3. Verify the Snort Installation
Verify the installation as shown below.
4. Create the required files and directory
You have to create the configuration file, rule file and the log directory.
Create the following directories:
Create the following snort.conf and icmp.rules files:
The above basic rule does alerting when there is an ICMP packet (ping).
Following is the structure of the alert:
Structure | Example |
---|---|
Rule Actions | alert |
Protocol | icmp |
Source IP Address | any |
Source Port | any |
Direction Operator | -> |
Destination IP Address | any |
Destination Port | any |
(rule options) | (msg:”ICMP Packet”; sid:477; rev:3;) |
5. Execute snort
Execute snort from command line, as mentioned below.
Try pinging some IP from your machine, to check our ping rule. Following is the example of a snort alert for this ICMP rule.
Alert Explanation
A couple of lines are added for each alert, which includes the following:
A couple of lines are added for each alert, which includes the following:
- Message is printed in the first line.
- Source IP
- Destination IP
- Type of packet, and header information.
If you have a different interface for the network connection, then use -dev -i option. In this example my network interface is ppp0.
Execute snort as Daemon
Add -D option to run snort as a daemon.
Additional Snort information
- Default config file will be available at snort-2.8.6.1/etc/snort.conf
- Default rules can be downloaded from: http://www.snort.org/snort-rules
> Add your comment
If you enjoyed this article, you might also like..
Next post: RAID 0, RAID 1, RAID 5, RAID 10 Explained with Diagrams
Previous post: How to Register RHEL/OEL Linux to Oracle Support (ULN) using up2date
Today you'll learn the Kali Linux live USB installation procedure and how boot Kali Linux from USB.
By the end of this post, you'll have a USB drive with Kali Linux pre-installed that you can boot from any computer.
You'll also learn the steps on how to boot your Windows or Mac computer from a USB.
Why Install Kali Linux on a USB Drive
- You'll have a ready to use copy of Kali Linux wherever you go (pre-installed in a USB drive)
- You can run Kali Linux at any nearby computer (that supports boot from USB)
- No need to install anything or make changes to the host computer
You simply plug in your USB, boot the computer from USB, and you're ready to get hacking.
Recommend:Download: A Collection of Passwords & Wordlists for Kali Linux (2020)
Requirements
- USB Flash Drive (preferably USB 3.0)
1) Download Universal USB Installer
First, you’ll need to download Universal USB installer which is a program that lets you install a selection of Linux distributions on a USB drive.
PRO TIP: You can install any linux distribution (not just Kali Linux) using this method. It’s a good way to learn and experiment with different distros.
2) Download Kali Linux Image (ISO)
Next, you’ll need to download an image of Kali Linux. You can download it from the Kali Linux website.
Install Kali Linux On USB Using Universal USB Installer
Now you're going to install Kali Linux from USB using the program we just downloaded.
If you haven’t already, plug in your USB flash drive now.
Then, start the Universal USB Installer. Once you’re at the selections page, follow these steps:
- Select Kali Linux
- Select “browse” then select the Kali Linux ISO image (you downloaded)
- Select your USB flash drive, then click “Create”
PRO TIP: If you’re unsure which drive is your USB, open up “My Computer” then re-plug in your flash drive and you’ll see which drive it appears as.
Install Bison Kali Linux Free
Before you proceed:
Kali Linux Tools
Double check to make sure you selected the correct USB drive. If so, click “yes.”
Now we wait.
Depending on the write speed of your flash drive, this process might take awhile so just be patient.
You’ll know it’s complete once you see this:
Boot from USB on Windows
Now you’re going to boot your computer from a USB.
If you’re on Windows, here’s how to boot from USB:
- Restart your computer (make sure the USB drive is plugged-in)
- Be prepared to tap “F12” to trigger boot from USB/CD (or change boot device)
NOTE: The boot key might be different for your computer. Pay close attention to the bottom part of the screen during the initial boot up. This is how mine looks like: - On the boot options screen, select your USB drive (using the arrow keys) then hit “Enter”
Install Bison Kali Linux Update
Boot from USB on Mac
Booting from a USB on a MAC is much simpler than Windows.
Here’s how to boot MAC from a USB:
- Restart your computer (make sure the USB drive is plugged-in)
- Immediately hold down the “Option/Alt” key
- Use the arrow keys (or mouse) to select “Windows” then hit “Enter”
Recommend: How To Install Kali Linux on VirtualBox in Mac OSX (One-Click Install)
Getting Started: Kali Linux Live USB
After booting from USB, wait for it to start up until you see the Kali boot menu.
Select the default (Live) then hit “Enter”
What is Kali Linux Live?
During a live session, any changes you make, files you download, packages you install, etc – all of it will be deleted the moment you end the live session and unplug the USB.
Each time you start a new live session, you’re starting from a clean slate.
In order to save any data or changes you make during a live session, you need to configure Persistence on your USB which I’ll be covering on a separate post.
The default login for Kali Linux is: root / toor
That’s it! Now you have Kali Linux in your pocket (or wherever you keep your flash drive), and you can launch it at any time and at any nearby computer (that supports booting from USB).
Recommend: Best Wireless Adapters Compatible With Kali Linux (2020)
related posts: