Wednesday, April 3, 2019

Security Onion Hybrid Hunter 1.0.7 Tech Preview Available for Testing!

We recently announced Security Onion Hybrid Hunter:
https://blog.securityonion.net/2018/11/security-onion-hybrid-hunter-101-tech.html

We're excited to announce that Hybrid Hunter 1.0.7 is now available for testing!
https://github.com/Security-Onion-Solutions/securityonion-saltstack/blob/master/README.md

Major highlights of this release:

  • Suricata 4.1.3
  • Influxdb 1.7.5
  • Telegraf 1.10.1
  • Grafana 6.0.2
  • Setup now requires interface selection #26
  • Reduced the RAM usage for ES in Eval mode #25
  • Eval Mode setup is now choose your own adventure style
  • Fresh dockers for all the things to bring everything to 1.0.7
  • New utility docker called SOctopus
  • New html landing page now in dark mode
  • Added support for TheHive
Screenshots
From Kibana, you can pivot from a log entry to TheHive

Log now available in TheHive

No comments:

Search This Blog

Featured Post

Did you know that you can configure Security Onion to only record PCAP for Suricata NIDS alerts?

Folks sometimes ask how to only record PCAP for Suricata NIDS alerts so that they can save disk space. Our preference is to NOT limit PCAP t...

Popular Posts

Blog Archive