Basic NGIPS Operation and Management for Intrusion Analysts

by Mike Mahurin
Sept. 1, 2017 1 comment SANS Institute network security

Next Generation Intrusion Prevention Systems (NGIPS) are often referred to as the panacea to modern malware, network intrusion, advanced persistent threat, and application control for complex modern applications. Many vendors position these products in a way that minimizes the value of tuning and intrusion analysis to get the optimum security capability of the solution. This paper will provide a guide for how to maximize the capabilities of these technologies by providing a basic framework on how to effectively manage, tune, and augment a NGIPS solution with Open Source tools.

negrii_irina88 7 months, 4 weeks ago

it rapidly detect, block, contain, and remediate advanced gives you better protection against today’s sophisticated attacks