20
Chapter 2
N O T E
If the version of Kali Linux you’re using doesn’t come preinstalled with Snort, you
can download the files from the Kali repository by entering
apt-get install snort
.
Viewing Files
As demonstrated in Chapter 1, the most basic text display command is
probably
cat
, but it has its limitations. Use
cat
to display the Snort config
file (
snort.conf ) found in
/etc/snort (see Listing 2-1).
kali >
cat /etc/snort/snort.conf
Listing 2-1: Displaying
snort.conf
in the terminal window
Your screen should now display the entire
snort.conf file, which will
stream until it comes to the end of the file, and should look something like
the following code. This isn’t the most convenient or practical way to view
and work with this file.
#-------------------------------------------------
# VRT Rule Packages Snort.conf
#
# For more information visit us at:
# HYPERLINK “http://www.snort.org/” http://www.snort.org Snort Website
--
snip
--
# event thresholding or suppressions commands...
kali >
In the following two sections, I will show you the
head
and
tail
com-
mands, which are two methods for displaying just part of a file’s content
in order to more easily view the key content.
