Scribd Logo
Upload

Welcome to Scribd!

  • Vezba 18

    Uploaded by

    Милица С.
    20 views24 pages

    Original Title

    vezba18

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    20 views24 pages

    Vezba 18

    Uploaded by

    Милица С.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 24

    Vezba 18

    Prvo preuzimamo potrebne fajlove za instalaciju.

    Idemo na sajt winpcap.org zatim download.

    Zatim biramo poslednju verziju WinPcap-a i kliknemo link da bi preuzeli instalaciju.

    Zatim preuzimamo Npcap. Idemo na link nmap.org/npcap/ biramo verziju za windows i preuzimamo.
    Sledece idemo na sajt snort.org i idemo na Get Started.

    Biramo windows platformu.


    Putem linka zapocinjemo preuzimanje.

    Sledece, vracamo se na pocetnu stranicu sajta i biramo Download rules.


    Potrebni su nam Registered rules ali da bi nam bili dostupni moramo da budemo prijavljeni.

    Idemo na Sign up i pravimo nalog.


    Kada smo napravili nalog i prijavili se vracamo se u rules i biramo verziju koja odgovara verziji Snort-a
    koju hocemo da intaliramo.

    Sada prelazimo na instalaciju potrebnih programa.

    Prvi program je WinCap.


    Idemo next.

    Zatim I Agree.

    Zatim install I finish.


    Zatim instalirujemo Npcap.

    Stikliramo ova dva parametra I install.


    Ovde idemo prvo uninstall, zatim finish

    Instalirujemo Snort.
    Idemo na next.

    Opet next.
    Obavestenje da je uspesno instalirano.

    Napravimo folder. Unzipujemo 4 fajla.


    U tom folderu nadjemo preproc_rules fajl I kopiramo ga u isti fajl u Snort folderu na local disk c:

    Zamenimo datoteke.
    Isto uradimo I sa rules.

    Idemo na fajl etc desni klik I edit with notepad++


    Otvaramo komandu liniju I kucamo ipconfig

    U notepad++, u 45 liniji kucamo 192.168.0.1/24


    Dodajemo !$HOME_NET

    Kucamo c:\Snort\rules

    Dodajemo u 105 liniji #

    U 106 kucamo c:\Snort\preproc_rules

    U obe linije dodajemo c:\Snort\rules

    I ovde kucamo c:\Snort\log

    Kucamo c:\Snort\lib\

    Kucamo isto I na kraju stavljamo .dll

    Dodajemo #.
    Dodajemo #

    Brisemo #.

    Idemo desni klik na blacklist.rules, edit with notepad++

    Promenimo u WHITELIST RULES

    Sacuvamo kao whitelist.rules

    Otvaramo snor.conf u notepad++.


    Selektujemo / I idemo ctrl f

    Zamenimo sve linije do devetog koraka.


    Brisemo # I cuvamo.

    U komandnoj liniji kucamo cd c:\Snort\bin

    Zatim kucamo snort -V


    Kucamo snort -W

    Kucamo ipconfig /all


    Kucamo –I 1 –c c:\Snort\etc\snort.conf -T

    Iz foldera rules premestamo whitelist.rules na desktop. U komandnoj liniji kliknemo enter.


    Vracamo .rules u folder rules

    Kucamo opet snort –i 1 -c c:\Snort\etc\snort.conf –T I enter

    Idemo u rules pa edit with notepad++


    Iskucamo I sacuvamo

    Kucamo snort –i 1 –c c:\Snort\etc\snort.conf –A console I enter


    Kucamo na internetu boa.com

    Pejcic Mila IV-1

    You might also like