search

StamusNetworks / scirius

Scirius is a web application for Suricata ruleset management and threat hunting.
GNU General Public License v3.0
625 stars 150 forks source link

my suricata no data #183

Open RonnieNiu opened 5 years ago

RonnieNiu commented 5 years ago

image image and kibana is error image image and hunt no data image

pevma commented 5 years ago

Is that stand alone scirius or part of SELKS?

RonnieNiu commented 5 years ago

ITis stand alone scirius image

pevma commented 5 years ago

When you are on the Kibana page - if you use Chrome - what are the errors when you press Ctrl+Shift+J ?

RonnieNiu commented 5 years ago

image image image image

pevma commented 5 years ago

I think this is related to - https://github.com/StamusNetworks/scirius/issues/182#issuecomment-516788090

RonnieNiu commented 5 years ago

disable  es auth ,then  ok, but not eve. Json  data发自我的华为手机-------- 原始邮件 --------主题:Re: [StamusNetworks/scirius] my suricata no data (#183)发件人:Peter Manev 收件人:StamusNetworks/scirius 抄送:ybn ,Author I think this is related to - #182

—You are receiving this because you authored the thread.Reply to this email directly, view it on GitHub, or mute the thread.

pevma commented 5 years ago

Aha ok - so if you re using a proxy of some sort - i think you need to explicitly allow those paths - here is an example as it is done in SELKS - https://github.com/StamusNetworks/SELKS/blob/master/staging/config/hooks/live/chroot-inside-Debian-Live.hook.chroot#L125