IDS Fundamentals | TryHackMe Walkthrough

2 min readOct 22, 2024

Task 1: What is an IDS?

Can an intrusion detection system (IDS) prevent the threat after it detects it? Yea/Nay

Nay

Task 2: Types of IDS

Which type of IDS is deployed to detect threats throughout the network?

Network Intrusion Detection System

Which IDS leverages both signature-based and anomaly-based detection techniques?

Hybrid IDS

Task 3: IDS Example: Snort

Which mode of Snort helps us to log the network traffic in a PCAP file?

Packet Logging Mode

What is the primary mode of Snort called?

Network Intrusion Detection System Mode

Task 4: Snort Usage

Start the machine and follow along.

Where is the main directory of Snort that stores its files?

/etc/snort

Which field in the Snort rule indicates the revision number of the rule?

rev

Which protocol is defined in the sample rule created in the task?

icmp

What is the file name that contains custom rules for Snort?

local.rules

Task 5: Practical Lab

What is the IP address of the machine that tried to connect to the subject machine using SSH?

10.11.90.211

What other rule message besides the SSH message is detected in the PCAP file?

Ping Detected

What is the sid of the rule that detects SSH?

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Tryhackme Walkthrough

Tryhackme Writeup

Written by 🃏

Cybersecurity Enthusiast 💻 🖤

Responses (1)

Write a response

What are your thoughts?

Also publish to my profile

mohamed abouzaenin

Nov 7, 2024

thank you for your efforts

More from 🃏

🃏

How To Add a User in Kali Linux

This is a walkthrough guide on how to add a standard user in Kali Linux.

Apr 29, 2021

Network Secure Protocols — TryHackMe Walkthrough

🃏

Network Secure Protocols — TryHackMe Walkthrough

Task 1: Introduction

Oct 23, 2024

Read The Privacy Policy!

🃏

Read The Privacy Policy!

Before you sign up for that website or mobile app, at least read the Privacy Policy. This is the most ignored part when signing up for…

Apr 30, 2021

See all from 🃏

Recommended from Medium

Firewall Fundamentals — Cyber Security 101-Security Solutions -TryHackMe Walkthrough

IritT

Firewall Fundamentals — Cyber Security 101-Security Solutions -TryHackMe Walkthrough

Learn about firewalls and get hands-on with Windows and Linux built-in firewalls.

Nov 4, 2024

TryHackMe | Vulnerability Scanner Overview | WriteUp

In

T3CH

by

Axoloth

TryHackMe | Vulnerability Scanner Overview | WriteUp

Learn about vulnerability scanners and how they work in a practical scenario

Nov 23, 2024

Lists

Staff picks

819 stories1638 saves

Stories to Help You Level-Up at Work

19 stories944 saves

Self-Improvement 101

20 stories3333 saves

Productivity 101

20 stories2801 saves

TryHackMe — Vulnerability Scanner Overview — Writeup

embossdotar

TryHackMe — Vulnerability Scanner Overview — Writeup

Key points: Vulnerability scanners | Vulnerability scanning | CVE | CVSS | OpenVAS. Vulnerability Scanner Overview by awesome TryHackMe! 🎉

Oct 22, 2024

TryHackMe — CAPA: The Basics | Cyber Security 101 (THM)

rutbar

TryHackMe — CAPA: The Basics | Cyber Security 101 (THM)

Tool Overview: How CAPA Works

Oct 23, 2024

TryHackMe — CyberChef: The Basics | Cyber Security 101 (THM)

rutbar

TryHackMe — CyberChef: The Basics | Cyber Security 101 (THM)

Navigating the Interface

Oct 23, 2024

TryHackMe — Digital Forensics Fundamentals | Cyber Security 101 (THM)

Z3pH7

TryHackMe — Digital Forensics Fundamentals | Cyber Security 101 (THM)

Hey everyone! TryHackMe just announced the NEW Cyber Security 101 learning path, and there are tons of giveaways this time! This article…

Oct 31, 2024

See more recommendations

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams