Introduction to Intrusion Detection Systems (IDS)

Introduction to Intrusion Detection Systems (IDS)

本课程是 Intrusion Detection 专项课程的一部分

位教师：Jason Crossland

访问权限由 Coursera Learning Team 提供

7个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

5 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

7个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

5 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

您将学到什么

Understand the roles of HIDS and NIDS, their key components, and applications across cybersecurity contexts.
Install and configure IDS solutions on VMs to detect real-time threats in host and network environments.
Compare signature-based and anomaly-based detection methods and configure IDS rules accordingly.
Use quantitative techniques to assess IDS effectiveness, analyzing data to select optimal solutions for security needs.

您将获得的技能

Intrusion Detection and Prevention
Network Monitoring
Network Analysis
System Monitoring
Threat Detection
Network Security
Anomaly Detection
Endpoint Detection and Response
Event Monitoring
Virtual Machines
Continuous Monitoring
Distributed Denial-Of-Service (DDoS) Attacks
Threat Management
技能部分已折叠。显示 8 项技能，共 13 项。

要了解的详细信息

可分享的证书

添加到您的领英档案

作业

18 项作业

授课语言：英语（English）

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Intrusion Detection 专项课程专项课程的一部分

在注册此课程时，您还会同时注册此专项课程。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
获得可共享的职业证书

该课程共有7个模块

This course introduces you to Intrusion Detection Systems (IDS), offering essential knowledge and hands-on skills for detecting and mitigating security threats. As cyberattacks become more sophisticated, learning to protect systems through IDS is a critical skill for IT and security professionals. This course is designed to give you a comprehensive understanding of both Host-Based (HIDS) and Network-Based Intrusion Detection Systems (NIDS). You’ll dive into core components, explore the differences between signature-based and anomaly-based detection, and gain practical experience by operating IDS tools on virtual machines.

What makes this course unique is its combination of theory and real-world application: you’ll learn to configure IDS technologies, develop custom rules, and evaluate IDS performance quantitatively. By the end of this course, you’ll be equipped to identify and respond to security threats in various environments, from individual hosts to complex networks. This practical knowledge will set you apart, enhancing your ability to protect critical systems against emerging cyber threats.

This course provides a comprehensive overview of Intrusion Detection Systems (IDS), focusing on both Host-based (HIDS) and Network-based (NIDS) technologies. Participants will learn to describe IDS components, analyze attack dynamics, and develop use cases for detecting insider threats and DDoS attacks. The course includes practical sessions on installing and operating HIDS and NIDS on virtual machines, as well as configuring tools like Suricata. Additionally, students will evaluate detection methods and conduct quantitative assessments to enhance their understanding of cybersecurity effectiveness.

涵盖的内容

1个视频3篇阅读材料

This course provides a comprehensive introduction to Intrusion Detection Systems (IDS), focusing on their purpose, components, and various types. Participants will explore the relationship between attacks and risk, learning to identify specific attack observables and how they relate to potential threats.

涵盖的内容

6个视频4篇阅读材料3个作业

6个视频总计120分钟

Introduction to Intrusion Detection 9分钟
Risks and Threats 16分钟
IDS Types and Components 25分钟
Part 1: Mapping Threats, Observables, and IDS Types 26分钟
Part 2: Mapping Threats, Observables, and IDS Types 21分钟
Optional: "Strategic Cyber Defense" (DARPA) 23分钟

4篇阅读材料总计340分钟

Reading References 120分钟
Reading References 120分钟
Self-Reflective Reading: Intrusion Detection Products 40分钟
Self-Reflective Reading: Advanced Persistent Threats and Spear-Phishing Attacks 60分钟

3个作业总计90分钟

Introduction, Products, and Components 60分钟
Understanding the Purpose and Components of an IDS 18分钟
Classifying IDS Types and Selecting the Right IDS 12分钟

This course provides an in-depth exploration of Host-based Intrusion Detection Systems (HIDS). It begins with a detailed description of HIDS and its critical role in monitoring and analyzing the activities within individual host systems to detect potential security threats.

涵盖的内容

4个视频4篇阅读材料3个作业1个插件

4个视频总计56分钟

Introduction 3分钟
Host Intrusion Detection Description 22分钟
HIDS Types and Examples 20分钟
Attack Types Detected by HIDS (2C) 12分钟

4篇阅读材料总计340分钟

Reading References 120分钟
Reading References 120分钟
Self-Reflective Reading: Challenges in Deploying HIDS/IPS Solutions 40分钟
Self-Reflective Reading: Host-Based IDS/IPS in Insider Threat Mitigation 60分钟

3个作业总计90分钟

HIDS I 60分钟
Introduction to Host Intrusion Detection Systems (HIDS) 15分钟
Deploying HIDS for Insider Threat Detection 15分钟

1个插件总计35分钟

OSSEC (2D) 35分钟

This course provides a deep dive into the mechanisms and methodologies behind Host-Based Intrusion Detection Systems (HIDS).

涵盖的内容

4个视频4篇阅读材料3个作业

4个视频总计71分钟

Introduction 4分钟
Host Integrity Attack Detection 24分钟
Hardware and Side-Channel Attack Detection 15分钟
Static and Dynamic Malware Detection 27分钟

4篇阅读材料总计340分钟

Reading References 120分钟
Reading References 120分钟
Self-Reflective Reading: Exploring Concepts of Security and Quantum Computing 40分钟
Self-Reflective Reading: Understanding HIDS/IPS and API Attack Detection 60分钟

3个作业总计90分钟

HIDS II 60分钟
Understanding Integrity and Hardware Attacks 15分钟
Implementing Biometric Solutions: Keystroke and Facial Recognition 15分钟

This course provides an in-depth exploration of Network Intrusion Detection Systems (NIDS), focusing on the essential role they play in cybersecurity.

涵盖的内容

6个视频4篇阅读材料3个作业2个插件

6个视频总计73分钟

Introduction 2分钟
Network Intrusion Detection Description 21分钟
NIDS Types and Examples 18分钟
Brief Snort Tutorial (Additional Resource) 6分钟
Attack Types Detected by NIDS 18分钟
Snort Tutorial 2 (Additional Resource) 7分钟

4篇阅读材料总计320分钟

Reading References 120分钟
Reading References 120分钟
Self-Reflective Reading: Understanding NIDS/IPS for Attack Detection 40分钟
Self-Reflective Reading: Understanding Cyber-Attack Classification 40分钟

3个作业总计90分钟

NIDS I 60分钟
Understanding and Classifying Network Intrusion Detection Systems (NIDS) 15分钟
Deploying NIDS for DDoS Detection 15分钟

2个插件总计7分钟

Snort Overview 6分钟
Nessus is an Enterprise Tool: Top Ten Things You Didn't Know About Nessus 1分钟

This course provides an in-depth exploration of Network Intrusion Detection Systems (NIDS), focusing on differentiating between signature-based and anomaly-based detection methods.

涵盖的内容

5个视频4篇阅读材料3个作业

5个视频总计74分钟

Introduction 6分钟
Signatures and Anomalies in NIDS 24分钟
Netflow and Establishing a Baseline 21分钟
Type I and Type II Errors 12分钟
WIDS 13分钟

4篇阅读材料总计460分钟

Reading References 180分钟
Reading References 180分钟
Self-Reflective Reading: Analyzing Technology Trade-Offs in Cybersecurity Archiving 60分钟
Self-Reflective Reading: Understanding Flash-Crowd Attacks and DDoS Mitigation 40分钟