Chapter 8. Architecting an IDS/IPS Range

In this chapter, we will learn the techniques of designing and building a variety of IDS/IPS capabilities into our network range. We will also look at the deployment of typical host and endpoint security configurations. We will discuss the following topics:

Deploying a network-based IDS
Implementing a host-based IPS and endpoint security
Working with virtual switches
Evasion

This chapter will provide us with a methodology to use when we encounter a number of different monitoring devices. In this chapter, we will look at evasion, that is, techniques to avoid detection. While this is a popular topic, as a professional security tester, the reality is that it is rarely asked for; furthermore, it is dependent on ...

Get Building Virtual Pentesting Labs for Advanced Penetration Testing - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building Virtual Pentesting Labs for Advanced Penetration Testing - Second Edition by Kevin Cardwell

Chapter 8. Architecting an IDS/IPS Range

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly