This project is devoted to presenting a solution to protect web pages that acquire passwords and user names against HTML brute force. By performing a brute force password auditing against web servers that are using HTTP authentication with Nmap and detect this attack using snort IDS/IPS on PFSense Firewall.

1. Snort IDS/IPS on PFSense
Huda Seyam
7/6/2020

2. Project idea

3. HTTP Brute Force Attack

4. Waterfall Model 1 Analysis & Design
2 Development
3 Testing
4 Documentation

5. Analysis & Design
1. Draft Environment
2. Install needed ISO

6. Environment

7. Development
1. Setup the environment
2. Install Snort on PFSense as an Intrusion
Prevention System
3. Configure Snort to defend against the http-
brute force attack
2

8. PFSense

9. OUR WORK
1. Setup virtual switches in VMware
Workstation
2. Setup victim webserver machine
3. Setup attacker machine
4. Setup normal user machine
5. Setup PFSense Firewall
Setup the environment

10. Snort

11. OUR WORK
1. Install snort package
2. Download Snort VRT rules
Install Snort on PFSense
Configure Snort
1. Configure snort on interfaces to
defend against the http-brute force
attack

12. Testing
1. Perform http-brute force attack
2. Checked Alert and blocked host
3

13. OUR WORK
By use Nmap tool on kali Linux
Perform http-brute
force attack

14. Documentation
1. Write report
4

15. References
https://digitalave.github.io/spring/2019
/12/16/How_To_Setup_Intrusion_Detecti
on_Using_Snort_on_PfSense.html
https://www.snort.org/
https://www.pfsense.org/
https://owasp.org/www-
community/controls/Blocking_Brute_Fo
rce_Attacks
https://hub.packtpub.com/brute-
forcing-http-applications-and-web-
applications-using-nmap-tutorial/

16. THANK YOU