This course is designed to give students practical, working knowledge in intrusion detection and traffic analysis. The students will gain an understanding of the workings of TCP/IP, methods of network traffic analysis and one popular network intrusion detection system Snort.

The emphasis of this course is on increasing students’ understanding of the workings of TCP/IP, methods of network traffic analysis and one specific network intrusion detection system (NIDS) - Snort. Challenging, hands-on exercises are specially designed to be valuable for all experience levels. Delegates will install and commission the Snort Open Source IDS/IPS system on their own internal network and be trained in the management, monitoring and support of the system.

On completion of the training, delegates will have a fully working intrusion detection and prevention system. They will be able to comprehensively evaluate the use of an IDS and IPS in a working environment and have the knowledge to deploy further units in a business or enterprise-wide environment.


  • Introducing Network Analysis
  • Traffic Analysis
  • Tcpdump
  • Wireshark
  • Network-based Intrusion Detection Systems
  • IDS Signatures and Analysis
  • Intrusion Detection Systems
  • Snort- Installation and configuration
  • Web application attacks
  • Modsecurity
  • Practical Exam

A laptop is a compulsory requirement due to the practical labs in the course. The laptop should have at least the specifications listed below:-

  • Laptop with administrative level access
  • 5 GB available hard drive space
  • 1 GB RAM or higher DVD drive (minimum 12x recommended)
  • x86 compatible 2Ghz CPU minimum or higher
  • For more information about our training courses, contact us.

    Africa Headquarters: Nairobi, Kenya.; Tel: + 254 518 007 755; Safaricom: + 254 722 102 854; Airtel: + 254 786 629 775; Fax: + 254 202 149 857; Email: info@cybersecurityafrica.com

    Copyright © 2017 Cyber Security Africa. All Rights Reserved.