Friday, October 19, 2018

Security Onion 16.04.5.3 now available!

Security Onion 16.04.5.3 is now available!


Issues Resolved

Issue 1321: 16.04.5.3 ISO image
https://github.com/Security-Onion-Solutions/security-onion/issues/1321

Release Notes
For more information about this release, please see:
https://github.com/Security-Onion-Solutions/security-onion/wiki/16.04.5.3

Security Onion 14.04 EOL Reminder
As a reminder, all new development is now on Security Onion 16.04 and Security Onion 14.04 will reach EOL on November 30, 2018:
https://blog.securityonion.net/2018/06/6-month-eol-notice-for-security-onion.html

After that date, we will not provide any support for Security Onion 14.04.  Please plan to upgrade or replace any existing 14.04 systems before that date.

Installation Guide
We've updated the Installation guide to reflect the download locations for the new ISO image:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Installation

Existing Deployments
If you have existing 16.04 installations, there is no need to download the new ISO image.  You can simply continue using our standard update process to install updated packages as they are made available:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrade

If you have existing installations of Security Onion 14.04, you can upgrade from 14.04 to 16.04:
https://github.com/Security-Onion-Solutions/security-onion/wiki/Upgrading-from-14.04-to-16.04

Thanks
Thanks to Wes Lambert for testing this new ISO image!

Training
Our next public 4-day Basic Course will be in San Antonio in February 2019!  We also offer private classes and online training!  For more information, please see:
https://securityonionsolutions.com

Support
Need support?  Please see:
https://securityonion.net/wiki/Support

Screenshot Tour

ISO Boot Menu

ISO Live Desktop

After ISO installer completes, reboot and log in

Next, run Setup

Welcome to Setup

Configure network interfaces, reboot, then run Setup again, and skip network configuration

Evaluation Mode vs Production Mode

Interface Selection

Create User Account

Set Password

Confirm Password

Confirm All Options

Setup Complete

so-COMPONENT-VERB scripts

CyberChef 8.7.0

Single Sign On (SSO) for Squert, Kibana, and CapMe

Squert

Kibana with default dark theme

To switch to light theme, run so-elastic-configure-kibana-dashboards-light

Kibana with light theme

To switch back to dark theme, run so-elastic-configure-kibana-dashboards

Kibana back to dark theme

Help

Bro Notices

ElastAlert

OSSEC HIDS Alerts

NIDS alerts from Snort or Suricata

Bro - Connections

Bro - DCE/RPC

Bro - DHCP

Bro - DNP3

Bro - DNS

Bro - Files

Bro - FTP

Bro - HTTP

Bro - Intel

Bro - IRC

Bro - Kerberos

Bro - Modbus

Bro - MySQL

Bro - NTLM

Bro - PE

Bro - Modbus

Bro - RDP

Bro - RFB

Bro - SIP

Bro - SMB

Bro - SMTP

Bro - SNMP

Bro - Software

Bro - SSH

Bro - SSL

Bro - Syslog

Bro - Tunnels

Bro - Weird

Bro - X.509

Autoruns

Beats

OSSEC

Sysmon

Baby Domains

Firewall

Frequency Analysis

Syslog

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.