curator888
commented
4 years ago This one while very useful to have is going to require extra work see link, probably needs to be added to your nice to have list.
Open curator888 opened 4 years ago
curator888
commented
4 years ago This one while very useful to have is going to require extra work see link, probably needs to be added to your nice to have list.
Dockerhub Link:
https://securityonion.readthedocs.io/en/latest/docker.html
Description
Security Onion is a free and open source Linux distribution for threat hunting, enterprise security monitoring, and log management. It includes Elasticsearch, Logstash, Kibana, Snort, Suricata, Zeek (formerly known as Bro), Wazuh, Sguil, Squert, CyberChef, NetworkMiner, and many other security tools. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!
Separate Database?
No