menu
arrow_back

Palo Alto Networks: Advanced Threat Detection

Palo Alto Networks: Advanced Threat Detection

1시간 30분 크레딧 5개

GSP748

Google Cloud Self-Paced Labs

Overview

In this lab you will use the Palo Alto Networks VM-Series deployed as an Intrusion Detection System (IDS) in Google Cloud.

Google Cloud Packet Mirroring clones the network packets of specific instances in your Virtual Private Cloud (VPC) network and forwards that cloned network packet to the VM-Series for examination. Packet Mirroring captures all ingress and egress traffic and packet data, such as payloads and headers.

IDS is a primary use case for Packet Mirroring in Google Cloud. You can use the VM-Series as an IDS to analyze mirrored traffic to detect all threats or anomalies, and provide an additional layer of security protections. Additionally, you can inspect the full traffic flow to detect application performance issues.

What you'll do

  • Review Google Cloud Packet Mirroring setup for VM-Series
  • Monitor the malicious activities at the VM-Series
  • Browse to a juice-shop web page
  • Perform SQL Injection attacks at the juice-shop website
  • Exploit a Jenkins instance from a Linux instance
  • Test two more security features of VM-Series
  • Antivirus - Download a test virus file from an Linux instance
  • URL Filtering - access a hacking website from a Linux instance

Topology:

58f11b18d9d49438.png

The VM-Series firewall, Google Cloud VPC Packet Mirroring, Jenkins Server, Juice Shop web server and Kali Linux server will be pre configured for you.

이 실습의 나머지 부분과 기타 사항에 대해 알아보려면 Qwiklabs에 가입하세요.

  • Google Cloud Console에 대한 임시 액세스 권한을 얻습니다.
  • 초급부터 고급 수준까지 200여 개의 실습이 준비되어 있습니다.
  • 자신의 학습 속도에 맞춰 학습할 수 있도록 적은 분량으로 나누어져 있습니다.
이 실습을 시작하려면 가입하세요