View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

correlation

SEC0178 - ASA FirePower Traffic Profile

The video demonstrates capability of Cisco ASA FirePower to detect anomalous traffic pattern. We will be configuring the FireSight System to monitor HTTP traffic to our servers, create traffic profile, and have it generate alert upon significant traffic pattern deviation. A HTTP packet generation tool will be used to generate HTTP requests at different rate to test our traffic profile.

Rating: 
5
Average: 5 (5 votes)
Difficulty Level: 
0

SEC0177 - ASA FirePower Event Correlation and Remediation (Part 2)

The video demonstrates Cisco ASA FirePower capability to correlate system events and generate appropriate remediation responses. We will go through two example scenarios; one with a basic event matching and responding, and the other continues to track the connection and apply a more complex conditions before issuing response. Specifically, we will configure NMAP scan and IP shun remediations. 

Rating: 
5
Average: 5 (3 votes)
Difficulty Level: 
0

SEC0177 - ASA FirePower Event Correlation and Remediation (Part 1)

The video demonstrates Cisco ASA FirePower capability to correlate system events and generate appropriate remediation responses. We will go through two example scenarios; one with a basic event matching and responding, and the other continues to track the connection and apply a more complex conditions before issuing response. Specifically, we will configure NMAP scan and IP shun remediations. 

Rating: 
5
Average: 5 (4 votes)
Difficulty Level: 
0

SEC0176 - ASA FirePower Compliance Enforcement with Whitelist

The video demonstrates the use of Whitelist feature on Cisco ASA FirePower to enforce application compliancy on end-host. We will look at two ways of creating a host profile; manual and from host discovery, and apply them to a network to have the FireSight System monitor and generate alert when any unapproved network protocols or application services are detected.

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Subscribe to RSS - correlation