This discussion focuses on how to develop a intrusion detection project.
1 Setup a LAN network with a web server like Windows IIS or Apache.
2. Understand the different types of security threats which are targeted on these platforms from sources like SANS, Vendor websites, OWASP etc.
3. Understand the attack anatomy
4. Use different packet crafting tools like nmap, hping, scapy etc to simulate the attacks on the web server.
5. Setup packet analyzer like wireshark to analyze the intrusion based on patterns.