Thursday, August 31, 2017

securityonion-sostat - 20120722-0ubuntu0securityonion74 now available for Security Onion!

The following package is now available:
securityonion-sostat - 20120722-0ubuntu0securityonion74

This package should resolve the following issues:

Issue 928: soup: if snort/suricata/bro updated, remind user to
re-apply local changes
https://github.com/Security-Onion-Solutions/security-onion/issues/928

Issue 1072: soup: include reference to blog.securityonion.net
https://github.com/Security-Onion-Solutions/security-onion/issues/1072

Issue 1108: soup: handle situations where apt prompts to keep/replace file
https://github.com/Security-Onion-Solutions/security-onion/issues/1108

Issue 1124: soup: update docker images if enabled
https://github.com/Security-Onion-Solutions/security-onion/issues/1124

Issue 1125: sostat: report on docker images if enabled
https://github.com/Security-Onion-Solutions/security-onion/issues/1125

Thanks
Thanks to Wes Lambert and Phil Plantamura for testing the new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference 2017 will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Wednesday, August 30, 2017

New ELSA Packages Available for Security Onion

I've built new ELSA packages and the new package versions are as follows:
securityonion-elsa - 1205chartsjsd3-1ubuntu1securityonion10
securityonion-elsa-extras - 20151011-1ubuntu1securityonion56

These new packages should resolve the following issues:

Issue 1074: securityonion-elsa-extras: add 5140 parser
https://github.com/Security-Onion-Solutions/security-onion/issues/1074

Issue 1075: securityonion-elsa-extras: add storage calculator
https://github.com/Security-Onion-Solutions/security-onion/issues/1075

Issue 1076: securityonion-elsa-extras: refactor securityonion-elsa-reset
https://github.com/Security-Onion-Solutions/security-onion/issues/1076

Issue 1080: securityonion-elsa-extras: add delaycompress for elsa logs
https://github.com/Security-Onion-Solutions/security-onion/issues/1080

Issue 1122: securityonion-elsa: remove 300px limitation
https://github.com/Security-Onion-Solutions/security-onion/issues/1122

Thanks
Thanks to the following for submitting pull requests!
Brian Kellogg
Wes Lambert
Github user "4A61736F6E"
Pete Nelson
Phil Plantamura
Thanks to Wes Lambert and Phil Plantamura for testing the new packages!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference 2017 will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Tuesday, August 29, 2017

NetworkMiner 2.2 now available for Security Onion!

NetworkMiner 2.2 was released recently:
https://netresec.com/?b=17888CB

The following package is now available:
securityonion-networkminer - 20170828-1ubuntu1securityonion1

This package should resolve the following issues:

Issue 1127: NetworkMiner 2.2
https://github.com/Security-Onion-Solutions/security-onion/issues/1127

Thanks
Thanks to Erik Hjelmvik for NetworkMiner 2.2!
Thanks to Wes Lambert and Erik Hjelmvik for testing the new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference 2017 will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Monday, August 21, 2017

securityonion-squert - 20161212-1ubuntu1securityonion14 now available for Security Onion!

The following package is now available:
securityonion-squert - 20161212-1ubuntu1securityonion14

This package should resolve the following issues:

Squert: comment search not working #1119
https://github.com/Security-Onion-Solutions/security-onion/issues/1119

Thanks
Thanks to GRSmith for the bug report!
Thanks to Wes Lambert for testing the new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference 2017 will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Wednesday, August 16, 2017

4-day Security Onion Training is coming to San Antonio, TX!

Registration is now open for 4-day Security Onion training in San Antonio, TX!  For more details and to register, please see:
https://securityonionsolutions.com/onsitetraining

securityonion-nsmnow-admin-scripts - 20120724-0ubuntu0securityonion159 now available for Security Onion!

The following package is now available:
securityonion-nsmnow-admin-scripts - 20120724-0ubuntu0securityonion159

This package should resolve the following issues:

NSM: barnyard sending blank interface to syslog output #652
https://github.com/Security-Onion-Solutions/security-onion/issues/652

NSM: cron job to check if netsniff-ng is recording with a date other
than today #1117
https://github.com/Security-Onion-Solutions/security-onion/issues/1117

Thanks
Thanks to Kevin Branch and Wes Lambert for submitting pull requests!
Thanks to Kevin Branch and Wes Lambert for testing the new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Thursday, August 3, 2017

Suricata 4.0.0 now available for Security Onion!

Suricata 4.0.0 was recently released:
https://suricata-ids.org/2017/07/27/suricata-4-0-released/

The following package is now available:
securityonion-suricata - 4.0.0-1ubuntu1securityonion1

This package should resolve the following issue:

Suricata 4.0.0 #1116
https://github.com/Security-Onion-Solutions/security-onion/issues/1116

Thanks
Thanks to the Suricata team for Suricata 4.0.0!
Thanks to Wes Lambert for testing the new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Want to show your support for Security Onion?
Security Onion t-shirts are available in our CafePress store!
http://www.cafepress.com/securityonion/11820053

Conference
Security Onion Conference will be on Friday September 15 in beautiful Augusta, GA!
https://securityonion.net/conference

Training
We have a 4-day Security Onion training class right before the Security Onion Conference in Augusta GA.  For this and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!