-
I'm facing something strange with Suricata rules generated by MISP.
We have an event with the following attribute: "http://xxxxxx.ec/"
The generate Suricata rule is:
`
alert http $HOME_NET a…
-
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Current Behavior
When trying to update sources - error coming:
bulk_create() prohibited to prevent data…
-
Hi!
It is possible to have a second server only running suricata and install rockNSM on another and fetch the logs via Filebeat?
Or, it must be all local?
Cheers!
-
Hi Vadim,
Thanks for your python script. I am using it with wazuh to forward all alerts to theHive. I also have integrated suricata with wazuh so as all the suricata alerts are seen on wazuh. I …
-
Suricata 3.x is end of life soon. We need to update to the 4.x line. I believe the package and compilation process isn't too different from the existing process. Fedora/EPEL have existing [package sou…
dcode updated
6 years ago
-
Hi,
After checking the official documentation, I have a few questions about the DATAREP engine:
1. Do I need to **define** a `datarep` file the same way I do for a `dataset` file, in Suricata co…
-
On the open source version is it possible to have data from multiple suricata probes?
-
Hello guys,
I do my first SELKS installation using " SELKS-5.0-nodesktop.iso ", but when access web interface the status for Suricata always is red. The service is UP, but the status on web interfa…
-
Realice la instalacion de Selks en virtual box con 4 gb de ram 40 gb de disco rigido 2 ´procesadores.
termine la instalacion entro a la pagina https://10.0.0.34/rules sin problemas. inicio secion per…