About Security Onion
Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It's based on Ubuntu and contains Snort, Suricata, Zeek (formerly Bro), OSSEC/Wazuh, the Elastic Stack and many other security tools. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!
For more about Security Onion, please see:
About the Course
"I started Security Onion in 2008 to provide a comprehensive platform for intrusion detection, network security monitoring, and log management. Today, Security Onion has over 900,000 downloads and is being used by organizations around the world to help monitor and defend their networks. This class is the culmination of years of lessons learned while building Security Onion and best practices developed while deploying Security Onion to real networks and doing real incident response with it."
-- Doug Burks
What do previous students say about the class?
"This class is a GREAT deal for the material, and worth it, even at a much higher price tag."
"One of the best classes I have taken!"
"I really found this beneficial. As a novice user, I learned a TON and feel that I am better equipped for [the] future."
"The material was perfect, with a mix of complex and beginner case studies."
What do students get?
When is the class?
Tuesday, June 2, 2020 through Friday, June 5, 2020
8:00 AM - 5:00 PM (Eastern Time) each day
When does registration close?
Registration closes Tuesday, May 26, at 11:59 PM Eastern
Where is the class being held?
The class will be held at Residence Inn by Marriott Alexandria Old Town/Duke Street, 1456 Duke St, Alexandria, VA 22314. The training site is convenient to the Metro and has a parking garage onsite.
What hardware will be required for the class?
***Security Onion Solutions will provide laptops for use in the class.***
Students can choose to bring their own laptop that meets the following requirements:
Which version of Security Onion will we be using?
We'll be using the latest Security Onion as of three weeks before the first day of class.
The latest release can be found here:
What do students need to bring to class?
Students need to bring the following:
What skills/knowledge should students have before attending this course?
Students should have a basic understanding of networks, TCP/IP, and standard protocols such as DNS, HTTP, etc. Some Linux knowledge/experience is recommended, but not required.
What's the cancellation policy?
Security Onion Solutions reserves the right to cancel this class up to one day after registration closes if the class does not meet a minimum number of students. If class is cancelled, the training ticket cost will be refunded.
What's the refund policy?
You may log into your Eventbrite account and request a refund up until the last day of ticket sales. Please use the "Request a Refund" button as shown here:
Are there discounts available?
For this course, we are offering a discount to active duty US military and active US Federal employees.
We also offer discounts to members of ISSA and Infragard. Contact us for more information.
What topics are covered in this class?
Here is the syllabus (subject to change):