I’m a newbie in BRO IDS. I have done install BRO. But i don’t know how to use it. Someone tell me what should i do to detec some attack if happen in my network, please!. Tell me where i read notice and alarm too.
I’m very grateful and thank for your help.
Although I haven't used it in a while, probably the easiest way for you
to get started is install Security Onion on an Ubuntu virtual or
physical computer. It should take about 15 minutes to get Ubuntu
installed, and 15 minutes to get Security Onion installed. From there,
just look at the various log files.
After that, watch the videos and go through the exercises from the 2011