Monday, December 11, 2017

securityonion-sostat - 20120722-0ubuntu0securityonion82 now available for Security Onion!

The following package is now available:
securityonion-sostat - 20120722-0ubuntu0securityonion82

This package should resolve the following issues:

Issue 1156: soup: delete old Docker images

Issue 1157: sostat: provide statistics on logstash queue

Thanks to Wes Lambert for testing this package!

Please see the following page for full update instructions:

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!

Security Onion Solutions offers onsite and online training!  For more information, please see:

Need support?  Please see:


Tuesday, December 5, 2017

6 month EOL notice for Security Onion Xplico package

Our Xplico package will reach EOL (End Of Life) on June 5, 2018. After that date, we will no longer provide updates or support of any kind for Xplico.

Since 2015, our Setup wizard has disabled Xplico by default when choosing the "Best Practices" option:

Most users are not using Xplico at all.  Most of its functionality can be found in other tools.

We recently released our ISO image and it no longer includes Xplico:

Additionally, we recently made some changes to make it easier to totally remove the Xplico package from your existing system:

To remove Xplico from your system, please follow the steps here:

Monday, December 4, 2017