An alchemists view from the bar

Network Security Alchemy

Sourcefire Quick Tip: Custom RNA Service Detection

with 2 comments

As part of my Sourcefire “Quick Tip” series, a new video has been uploaded by our marketing guru’s to YouTube.

This time I ramble on about creating custom service detectors for Sourcefire’s RNA engine. This allows you to detect the network applications  in use on your network and track them in the context of IPS events, real-time network change detection, Service and host white-listing as well as general network mapping.

I hope it’s of use to you out there. I haven’t got my next quick-tip subject planned yet, so if anyone has a suggestion please let me know.

RNA Custom Services

Adding RNA Custom Services

If you would like to learn more about RNA, take a read here.

-Leon

About these ads

Written by leonward

October 26, 2009 at 11:55 am

Posted in Sourcefire

«
»

2 Responses

Subscribe to comments with RSS.

  1. Nice video! You are a MAC user right? Which app did you use to create this?

    Lloyd

    October 26, 2009 at 10:08 pm

    Reply

    • Hi,

      I use Screenflow. It’s pretty cool and flexible with it’s output formats.

      leonward

      October 28, 2009 at 12:38 pm

      Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Follow

Get every new post delivered to your Inbox.

%d bloggers like this: