cybersecurity

3167 readers

4 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 1 year ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

Open Source IDS - Security Onion 2.4 (securityonionsolutions.com)

submitted 6 months ago* (last edited 6 months ago) by redfox@infosec.pub to c/cybersecurity@infosec.pub

0 comments fedilink hide all child comments

For anyone who's interested in IDS, this is a product that's open source, with support.

It can be run as a single standalone, but it's meant to be run tiered, where you can deploy sensors doing packet capture, analysis, which gets sent to a central manager, and then can be retained in search nodes.

It's incredibly powerful, just have to be willing to learn how to tune it.

https://docs.securityonion.net/en/2.4/ https://blog.securityonion.net/

I am not affiliated with the product, just a user of it. I like it.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here