The first step is creating a Windows Server 2012 from an ISO image. I obtained mine from Microsoft Imagine, formerly known as DreamSpark, leveraging the fact I'm still in the college, at least for the next months.
I created a virtual machine with VMware Fusion, but VirtualBox is an equally viable solution.
I am going to create some basic rules to use Snort as an IDS.
The first thing to do is defining what Snort has to protect as the Home network.
You need to edit its configuration file (/etc/snort/snort.conf) as follows:
Change the value of the line ipvar HOME_NET from any to your home network range (in my case, 192.168.2.0/24)
Change the value of the line ipvar EXTERNAL_NET from any to !$HOME_NET (in other words, uncomment the last line shown in the first below screenshot). The value of the EXTERNAL_NET variable will have to be defined as any network other than the Home network.
Apply customized rules by editing the file /etc/snort/rules/local.rules, as shown below.
Edit /etc/snort/snort.conf by adding a line that includes your customized rule file.
When trying to install Snort in Kali Linux, you may find yourself with a not very encouraging E:Unable to locate package message, alike this one above.
If this occurs, you're left with the only option of compiling it from source, which, in this case, is pretty painful.
Luckily, there's an easier alternative. Aptitude can't find the program we're looking for because it doesn't have the necessary repositories in its database.
So, in order to solve the problem, all we need to do is adding them manually.
Go the repositories list in Kali official website, then right-click and copy each repositories listed there (in other words, right-click and copy all the entries starting by deb, shown in the screenshot below).
That done, open the file etc/apt/sources.list with any text editor of your choice.
Paste the repositories you previously copied from the official website to said file and save it.
Now, you'll only have to run apt-get update -y in order to update your sources list.
With that being done, run apt-get install snort -y and this time around it will work.