[Oisf-users] Suricata works; now what?
Claudio Kuenzler
ck at claudiokuenzler.com
Wed May 6 06:22:36 UTC 2015
There are several possibilities. I personally use Snorby as a user
interface which I use for an overview and monitoring of events.
You can of course also parse the log files (e.g. fast.log) and generate an
alert from there.
On Wed, May 6, 2015 at 8:09 AM, James Moe <jimoe at sohnen-moe.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hello,
> suricata 2.0.7
> linux 3.16.7-21-desktop x86_64
>
> Suricata seems to be functioning correctly now that I gotten the
> system set up appropriately.
> I am sure there are automated tools for alerting the user/admin that
> alerts have been discovered.
> What are typical tools for monitoring suricata results?
>
> - --
> James Moe
> moe dot james at sohnen-moe dot com
> 520.743.3936
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2
>
> iEYEARECAAYFAlVJr/wACgkQzTcr8Prq0ZOOVgCglxzQR0PkaSG30pl/NghE/4sE
> si0An1GkCAIorD38FxmJOKsgouv0qyAf
> =IGEM
> -----END PGP SIGNATURE-----
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> Suricata User Conference November 4 & 5 in Barcelona:
> http://oisfevents.net
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20150506/ca396d59/attachment-0002.html>
More information about the Oisf-users
mailing list