How to use a Raspberry Pi as a Network Sensor - Bill Stearns
Want to level up your threat-hunting knowledge? Take our FREE, hands-on threat hunt training course: https://www.activecountermeasures.com...
1:51 Presentation Outline
2:12 Goals of This Talk
3:24 Did Someone Say Raspberry Pie?
14:50 Building the System
19:21 Software Setup
21:06 Network Setup
28:06 Additional Steps
31:20 Getting Packets
34:09 Monitor the Span Port
45:34 What Sniffing Tools to Use
46:46 This Example
50:49 Why Not a Traditional PC?
53:51 To Infinity...
56:05 References
Join Bill Stearns, from Active Countermeasures for "How to use a Raspberry Pi as a Network Sensor!"
Stealth - Size - Cost - Bang for the buck: pick any 4. :-)
Running a network sensor, IDS, or IPS can be a costly venture; the high-end ones can cost more than a used car. In this webcast we’ll cover running a network sensor using a Raspberry Pi, a miniature single-board computer that runs most anything you can run under Linux.
Bill will show you how to install and use the Zeek IDS and cover the performance aspects you'll need to know. Setting up IDSs that cost about the same as a bike means you can monitor far more network segments simultaneously, and hide them behind a power brick if you have to.
No previous experience with the Pi is needed - you'll have a shopping list of what to get. You'll probably want basic familiarity with running commands under Linux.
Slides & Buy List: https://activecountermeasures.com/ras...
Active Countermeasures Socials
Twitter: / activecmeasures
LinkedIn: / active-countermeasures
Discord: / discord
Our Threat Hunting Tool ~ AC-Hunter (Formally AI-Hunter)
Features - https://www.activecountermeasures.com...
Interactive Demo Space - https://www.activecountermeasures.com...
Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com...
Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com...
Active Countermeasures Blog: https://www.activecountermeasures.com...
Active Countermeasures YouTube: / activecountermeasures
Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pa...
Advanced: https://www.antisyphontraining.com/ad...
Active Countermeasures Shirts
https://spearphish-general-store.mysh...
Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wild West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/