Wednesday, April 3, 2019

Security Onion Hybrid Hunter 1.0.7 Tech Preview Available for Testing!

We recently announced Security Onion Hybrid Hunter:
https://blog.securityonion.net/2018/11/security-onion-hybrid-hunter-101-tech.html

We're excited to announce that Hybrid Hunter 1.0.7 is now available for testing!
https://github.com/Security-Onion-Solutions/securityonion-saltstack/blob/master/README.md

Major highlights of this release:

  • Suricata 4.1.3
  • Influxdb 1.7.5
  • Telegraf 1.10.1
  • Grafana 6.0.2
  • Setup now requires interface selection #26
  • Reduced the RAM usage for ES in Eval mode #25
  • Eval Mode setup is now choose your own adventure style
  • Fresh dockers for all the things to bring everything to 1.0.7
  • New utility docker called SOctopus
  • New html landing page now in dark mode
  • Added support for TheHive
Screenshots
From Kibana, you can pivot from a log entry to TheHive

Log now available in TheHive