Open Source IDS - Security Onion 2.4
(securityonionsolutions.com)
from redfox@infosec.pub to cybersecurity@infosec.pub on 05 Mar 2024 11:38
https://infosec.pub/post/9289703
from redfox@infosec.pub to cybersecurity@infosec.pub on 05 Mar 2024 11:38
https://infosec.pub/post/9289703
For anyone who’s interested in IDS, this is a product that’s open source, with support.
It can be run as a single standalone, but it’s meant to be run tiered, where you can deploy sensors doing packet capture, analysis, which gets sent to a central manager, and then can be retained in search nodes.
It’s incredibly powerful, just have to be willing to learn how to tune it.
docs.securityonion.net/en/2.4/ blog.securityonion.net
I am not affiliated with the product, just a user of it. I like it.
threaded - newest