Friday, January 10, 2025

Coming soon to Security Onion: ATT&CK Navigator Improvements!

Our upcoming Security Onion 2.4.120 release includes improvements for our ATT&CK Navigator integration! Navigator will now have 4 tabs across the top:

  • Detections Coverage - All Detections
  • Detections Coverage - Sigma
  • Detections Coverage - Suricata
  • Alerts (Last 3 Days)


Each tab will highlight coverage based on the title of the tab. Also, there are new pivots called View Related Detections and View Related Alerts that allow you to pivot from Navigator back to Detections and Alerts, respectively.


Security Onion 2.4.120 is coming soon!



Thursday, January 9, 2025

Coming soon to Security Onion Pro: External API!

Our upcoming Security Onion 2.4.120 release includes a new feature for Security Onion Pro customers! If you have a valid Pro license, you will be able to connect to the Security Onion API from external API clients. This means that you can create cases, pull PCAPs, or acknowledge alerts using automation!



Wednesday, January 8, 2025

Coming soon: Zeek 7 and support for more protocols like QUIC, HTTP2, OpenVPN, and IPSEC!

Our upcoming Security Onion 2.4.120 release includes Zeek 7! It also adds support for analyzing more network protocols like QUIC, HTTP2, OpenVPN, and IPSEC!



Tuesday, January 7, 2025

Coming soon: tune alerts without leaving the Alerts interface!

Our Detections interface makes it easy to tune your rules, but have you ever wanted to tune your rules right from the Alerts interface? 


This will be included in Security Onion 2.4.120 which is coming soon!

Monday, January 6, 2025

Coming soon: AI Summaries in Alerts!

In October, we released Security Onion 2.4.110 and it included a new AI Summary feature in our Detections interface:

https://blog.securityonion.net/2024/10/security-onion-24110-hurricane-helene.html


Over the last few months, we've continued to iterate on that AI Summary feature to make it available in the Alerts interface without having to pivot to Detections!


This will be included in Security Onion 2.4.120 which is coming soon!


Search This Blog

Featured Post

Coming soon to Security Onion: ATT&CK Navigator Improvements!

Our upcoming Security Onion 2.4.120 release includes improvements for our ATT&CK Navigator integration! Navigator will now have 4 tabs a...

Popular Posts

Blog Archive