- Joined
- Jan 8, 2019
- Messages
- 56,623
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,455
- Points
- 2,313
- Credits
- 32,750
6 Years of Service
76%
Security Onion is a free and open-source Linux distribution for intrusion detection, enterprise security monitoring, and log management. It includes Elasticsearch, Logstash, Kibana, Snort, Suricata, Bro, OSSEC, Sguil, Squert, NetworkMiner, and many other security tools. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!
Below are several diagrams to represent the current architecture and deployment scenarios for Security Onion on the Elastic Stack.
Changelog v2.3.250
FIX: Bump SOCtopus Flask Version to 2.3.2 #10272
FIX: Improve soup’s local file modification logic #8972
FIX: Kibana: Ensure _id fields beginning with a hyphen work properly when pivoting to SOC from Kibana #10305
FIX: Simplify cloud detection #10261
FIX: Strelka YARA Compilation #10271
UPGRADE: Elastic 8.7.1 #10269
UPGRADE: FleetDM 4.31.1 #10379
UPGRADE: Grafana 9.2.17 #10262
UPGRADE: Kratos to 0.13.0 #10309
UPGRADE: SOC external dependencies #10268
UPGRADE: Suricata 6.0.12 #10311
UPGRADE: Zeek 5.0.9 #10374