Wednesday, June 27, 2018

securityonion-sostat - 20120722-0ubuntu0securityonion107 now available for Security Onion 16.04!

securityonion-sostat - 20120722-0ubuntu0securityonion107 is now available for Security Onion 16.04 and should resolve the following issues:

sostat: support Bro logs in JSON and TSV #1263
https://github.com/Security-Onion-Solutions/security-onion/issues/1263

sostat: fix netsniff-ng packet loss info #1264
https://github.com/Security-Onion-Solutions/security-onion/issues/1264

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Monday, June 25, 2018

Security Onion 16.04.4.2 now available!

Security Onion 16.04.4.2 is now available!


Issues Resolved

16.04.4.2 ISO image #1262
https://github.com/Security-Onion-Solutions/security-onion/issues/1262

Release Notes

For more information about this release, please see:
https://github.com/Security-Onion-Solutions/security-onion/wiki/16.04.4.2

Security Onion 14.04 EOL Notice
As a reminder, all new development is now on Security Onion 16.04 and Security Onion 14.04 will reach EOL on November 30, 2018:
https://blog.securityonion.net/2018/06/6-month-eol-notice-for-security-onion.html

After that date, we will not provide any support for Security Onion 14.04.  Please plan to upgrade or replace any existing 14.04 systems before that date.

Installation Guide
We've updated the Installation guide to reflect the download locations for the new ISO image:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Installation

Existing Deployments
If you have existing 16.04 installations, there is no need to download the new ISO image.  You can simply continue using our standard update process to install updated packages as they are made available:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrade

If you have existing installations of Security Onion 14.04, you can upgrade from 14.04 to 16.04:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrading-from-14.04-to-16.04

Want us to upgrade your deployment for you?  Please contact Security Onion Solutions for pricing and scheduling:
https://securityonionsolutions.com

Thanks
Thanks to Wes Lambert for testing this new ISO image!

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

pinguybuilder - 20180514-1ubuntu1securityonion5 now available for Security Onion 16.04!

pinguybuilder - 20180514-1ubuntu1securityonion5 is now available for Security Onion 16.04 and should resolve the following issues:

pinguybuilder: make BIOS and EFI boot menus consistent #1254
https://github.com/Security-Onion-Solutions/security-onion/issues/1254

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

securityonion-iso - 20151016-1ubuntu1securityonion22 now available for Security Onion 16.04!

securityonion-iso - 20151016-1ubuntu1securityonion22 is now available for Security Onion 16.04 and should resolve the following issues:

so-iso-build: need to disable services in /etc/nsm/securityonion.conf #1261
https://github.com/Security-Onion-Solutions/security-onion/issues/1261

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Tuesday, June 19, 2018

securityonion-squert - 20161212-1ubuntu1securityonion41 now available for Security Onion 16.04!

securityonion-squert - 20161212-1ubuntu1securityonion41 is now available for Security Onion 16.04 and should resolve the following issues:

Squert: turning grouping off results in no alerts #1259
https://github.com/Security-Onion-Solutions/security-onion/issues/1259

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

tcpflow - 1.4.5+repack1-1ubuntu1securityonion1 now available for Security Onion 16.04!

tcpflow - 1.4.5+repack1-1ubuntu1securityonion1 is now available for Security Onion 16.04 and should resolve the following issues:

tcpflow -c should print a dot for non-printable chars #1260
https://github.com/Security-Onion-Solutions/security-onion/issues/1260

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Monday, June 18, 2018

securityonion-sostat - 20120722-0ubuntu0securityonion106 now available for Security Onion 16.04!

securityonion-sostat - 20120722-0ubuntu0securityonion106 is now available for Security Onion 16.04 and should resolve the following issues:

soup: install HWE metapackages if necessary #1258
https://github.com/Security-Onion-Solutions/security-onion/issues/1258

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Wednesday, June 13, 2018

securityonion-setup - 20120912-0ubuntu0securityonion270 now available for Security Onion 16.04!

securityonion-setup - 20120912-0ubuntu0securityonion270 is now available for Security Onion 16.04 and should resolve the following issues:

Setup: remove ELSA references from so-email #1257
https://github.com/Security-Onion-Solutions/security-onion/issues/1257

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Tuesday, June 12, 2018

securityonion-nsmnow-admin-scripts - 20120724-0ubuntu0securityonion176 now available for Security Onion 16.04!

securityonion-nsmnow-admin-scripts - 20120724-0ubuntu0securityonion176 is now available for Security Onion 16.04 and should resolve the following issues:

NSM: securityonion.service should set TimeoutStartSec=300 #1253
https://github.com/Security-Onion-Solutions/security-onion/issues/1253

Thanks
Thanks to Wes Lambert for testing this new package!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Monday, June 11, 2018

Bro 2.5.4 now available for Security Onion 14.04 and 16.04!

Bro 2.5.4 was released recently:
https://twitter.com/Bro_IDS/status/1004136143384764416
https://www.bro.org/download/NEWS.bro.html
https://www.bro.org/download/CHANGES.bro.txt

The following 14.04 packages are now available:
securityonion-bro - 2.5.4-1ubuntu1securityonion1
securityonion-bro-scripts - 20121004-0ubuntu0securityonion57

The following 16.04 packages are now available:
securityonion-bro - 2.5.4-1ubuntu1securityonion2
securityonion-bro-scripts - 20121004-0ubuntu0securityonion58

These new packages should resolve the following issues:

Bro 2.5.4 #1255
https://github.com/Security-Onion-Solutions/security-onion/issues/1255

Thanks
Thanks to the Bro team for Bro 2.5.4!
Thanks to Wes Lambert for testing these new packages!

Updating
Please see the following page for full update instructions:
https://securityonion.net/wiki/Upgrade

Training
We have 4-day Security Onion training classes coming up in Maryland and Georgia!  For more information and other training options, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Thanks!

Friday, June 8, 2018

Security Onion is over 600,000 downloads!

We recently surpassed 600,000 downloads of our Security Onion ISO image!  Of course, this number does not include folks who install their preferred flavor of Ubuntu and then install our packages on top of that.

Thanks to the entire community for your support!

Tuesday, June 5, 2018

Security Onion Conference 2018 CFP

This year's Security Onion Conference will be held in Augusta, GA on Friday, October 19, 2018 (please mark your calendar!). Registration will open in August.

CFP

Want to speak at Security Onion Conference? We want to hear from you!

How are you...
...using Security Onion to fight evil?
...handling lots of traffic using Security Onion?
...consuming host telemetry with Security Onion?
...integrating Security Onion with other technologies?
...automating common tasks with your own scripts?

Each talk should be 30 minutes with an additional 10 minutes for questions.

Submit your talk here!
https://securityonion.net/cfp

Schedule

June 5 - CFP open
July 5 - CFP closes
July 29 - Speakers selected and notified
August 2 - Registration opens
October 15-18 - Security Onion 4-day training in Augusta
October 19 - Security Onion Conference
October 20 - BSidesAugusta

Friday, June 1, 2018

6 month EOL notice for Security Onion 14.04

Yesterday we released Security Onion 16.04 and announced that all new development will now be on 16.04:
https://blog.securityonion.net/2018/05/security-onion-160441-iso-image-now.html

Security Onion 14.04 will reach EOL on November 30, 2018.  After that date, we will not provide any support for 14.04.  Please plan to upgrade or replace any existing 14.04 systems before that date.

If you have existing installations of 14.04, you can upgrade to 16.04:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrading-from-14.04-to-16.04

Want us to upgrade your deployment for you?  Please contact Security Onion Solutions for pricing and scheduling:
https://securityonionsolutions.com