SELKS
SELKS copied to clipboard
StamusNetworks
A Suricata based IDS/IPS/NSM distro
Is it possible to change mappings for this fields? Maybe it's somehow connected with another functions which can be broken.
how to add field Reference & link SID in .json field ? for view in eve-box and send to SIEM . _Sample References Url: doc.emergingthreats.net/2001583_ thanks for support ! Best...
Hi, I have been exploring some options to enable alerts in Elasticsearch. Most of the factory default alert options included with ELK (Watcher and Kibana Alerts (Beta)) have limited features...
suricata randomly stop capture package with suricata: stream-tcp-reassemble.c:1066: AdjustToAcked: Assertion `!(adjusted > check)' failed. Aborted (core dumped)
Hola, tengo una pequeño problema cuando realizo los siguientes pasos : - selks-first-time-setup_stamus Please supply a network interface(s) to set up SELKS Suricata IDPS thread detection on 0: enp0s3 1:...
Por que cuando voy User actions history me registra 2 horas menos de diferencia que la hora de mi servidor
Hola a todos, estoy ejecutando un KMS en un ordenador dentro de mi red donde tengo el suricata y no detecta el malware, tengo que activar alguna regla o por...
Hola a todos, espero me puedan ayudar, realice la instalación del Selks, una vez instalado sigo los pasos de configuración inicial inicial "selks-first-time-setup_stamus" y luego cuando termina la configuración realizo...
Hi, * Running SELKS 5 (ELK 6.8.9) I've defined a number of visualizations in Kibana, which use the signature IDs from Suricata. Initially I made a series of manual filters...
