-
Enable Community ID support:
1) Zeek - https://github.com/corelight/bro-community-id#using-the-package
2) Suricata - https://suricata.readthedocs.io/en/suricata-5.0.0/output/eve/eve-json-output.…
-
**Important notices**
Before you add a new report, we ask you kindly to acknowledge the following:
- [ ] I have read the contributing guide lines at https://github.com/opnsense/core/blob/master/…
LPJon updated
7 months ago
-
We need to look at adding to [suricata_config_populate.py](https://github.com/idaholab/Malcolm/blob/main/shared/bin/suricata_config_populate.py) the ability to generate suricata.yaml such that suricat…
-
There are many differences between Suricata logs and Zeek logs and so our Hunt queries and Kibana dashboards that were based on Zeek logs don't work as well for Suricata logs. Identify the differences…
-
## About accounts on [capesandbox.com](https://capesandbox.com/)
* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your usernam…
-
# 🐛 Summary #
There is a typo in https://github.com/cisagov/Malcolm/blob/main/docs/live-analysis.md
## To reproduce ##
Steps to reproduce the behavior:
1. Navigate to https://github.com/ci…
-
-
Hello.
SO Version: 2.3.2
SO deployment type: Standalone
Editor: Vim
**Objective**
Disable noisy suricata rules while learning Security Onion.
**What have I done**
I have based myself om t…
ghost updated
7 months ago
-
-