SELKS
SELKS copied to clipboard
StamusNetworks
A Suricata based IDS/IPS/NSM distro
### Is there an existing feature request that has already been created? - [X] I have searched the exiting features requests ### Is your feature request related to a problem?...
When install in Docker ,in this step" ./easy-setup.sh " It asks to provide interfaces,but like eth0,eth1,l0,en0 ( Find interface of my own computer or common interface name ) ,it all...
We are currently supporting two simple SELKS installations at two different sites. These are deployed as Debian VMs (4.19.0-18-amd64) built from the standard SELKS ISO. At this time, these SELKS...
### Is there an existing issue for this? - [X] I have searched the existing issues ### Current Behavior Ruleset has errors Unable to check ruleset validityInternal Server Error ###...
I am using a router running openwrt and setting up port mirror. How to Suricata Receive Traffic from Router | As it currently only receives traffic from the NIC vmware....
I execute the first time setup and the upgrade commands. Suricata is running but after some minutes it changes it´s state to "active(Exited)" and i can´t figure it out why....
After completed first time setup,and input this command "selks-health-check_stamus",it shows some errors,i don't know how to handle them. 1: the status of suricata is active (exited) root@SELKS: /etc/Netwo rkManager# selks-health-check_stamus...
Lets try the following: 1- run in unix-socket mode 2- pass the pcap via unix socket (continuous mode will be added later as a possibility, lets use the default/easy mode...
Why do I disable the rules, but I still see the rules in Rules activity and generate so many alerts?
I enable all rules in web page, and found that there are a few rules are not useful. So I want to stop them generating more alerts. Because it has...
I'm running SELKS-ce in docker. (4 vCPU's & 16Gb RAM) I set up drop rules, with the neccessary IPS code in the SELKS-6_addin.yaml. As part of my testing I wanted...
