Might I recommend a book? "The TAO of Network Security Monitoring" by
Richard Bejtlich has been a great book for me. He is a big user of
squil (pronounced SQUEAL) and other tools using FreeBSD and open
source tools. I did an interview with a him a while back and then
later read his book:
Richard Bejtlich has been a great book for me. He is a big user of
squil (pronounced SQUEAL) and other tools using FreeBSD and open
source tools. I did an interview with a him a while back and then
later read his book:
ht...
[ more ]