Several hands-on exercises are performed through CYBELS Cyber Range platform, virtualizing information systems and reflecting realistic network architectures.
Each student has a pentester computer and their own IT System at their disposal on CYBELS Cyber Range.
He is able to access numerous equipment (PCs, routers, probes, firewalls, servers, proxies …).
The course also embeds feedback from Thales experience on Cybersecurity tools, devices, projects and solutions

After the course, the students know :

• Deploy and administrate a IDS / IPS
• Manage the correlation
• Write signature

Introduction to IDS / IPS

• How it works
• Types of IDS / IPS implementation
• Types of Alerts
• Where, What and How to detect
• Situation and organization
• How to choose your IDS / IPS
• Host sensors & Network sensors

IDS / IPS Deployment

• How to install and deploy a sensor
• How to configure the sensor
• Infrastructure configuration
• Steps to finalize the sensor implementation
• Suricata deployement

Sensor Configuration

• How to detect and classify
• How to block a threat
• Write your own signature
• Syslog
• What is correlation
• Data source integration
• Correlation & alarms
• Tuning Techniques

Sensor Hands on

• Practical exercices
• Bypass sensor techniques