[Oisf-users] Suricata 2.0 Available!

Cooper F. Nelson cnelson at ucsd.edu
Tue Mar 25 16:54:04 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ideally I would like to integrate this with Moloch at some point:

https://github.com/aol/moloch

On 3/25/2014 9:40 AM, Shirkdog wrote:
> With all of this discussion about JSON, I will see if the guide applies to
> Splunk 6 (adapt as necessary).
> 
> My issue is always the same:
> 
> Full Packet Capture or GTFO
> On Mar 25, 2014 12:36 PM, "Cooper F. Nelson" <cnelson at ucsd.edu> wrote:
> 
> The current version of logstash is 1.4.0 and does not work with this
> guide.  Would it be possible to get it updated?
> 
> I'll offer to help in any way possible, with the caveat that I haven't
> been able to get it to work myself.
> 
> On 3/25/2014 3:41 AM, Victor Julien wrote:
> 
>>>>
>>>> The Eve log allows for easy 3rd party integration. It has been created
>>>> with Logstash in mind specifically and we have a quick setup guide here
>>>>
> https://redmine.openinfosecfoundation.org/projects/suricata/wiki/_Logstash_Kibana_and_Suricata_JSON_output
>>>>
>>>>
> 
> 
> 
>> _______________________________________________
>> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
>> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
>> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>> OISF: http://www.openinfosecfoundation.org/
>>
> 

- -- 
Cooper Nelson
Network Security Analyst
UCSD ACT Security Team
cnelson at ucsd.edu x41042
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJTMbSsAAoJEKIFRYQsa8FWt88IALniYJ/abEFe3MsljVJVTktP
tONV16VMgzfJWIB8CaPoRSQEDeWmowMTz4ISMx2RYKRsOUZ+qI0e+1pE8MZ+o0SV
zEYr7gqJlO89bu7DFUMWPQAn/y+YSrV0aD7HzChDx+p4LmOfC41Wp9MeTspjl2r/
URHvY6NsWa5KUqTsJCM0wc4foiucxK1MEyYnRLh8EFdcmJ70HQ+f31rIuMN8u5rv
kBPZZx049gNd+y8oxf7lATuValTYKWhoXFT0uPa+7tx4D37HnhvnSQyO5/lAWXFF
/wV4OIjg0U7mAacMLUhpjZgoxk8cCC9HxhgG9wVnBfLRiw3WGTsOqEVBKQ5VlD8=
=4aXN
-----END PGP SIGNATURE-----



More information about the Oisf-users mailing list