mhn integration with Splunk

[khan 10446920]

Hello all,

My issue is I can't integrate the Splunk with mhn-server, Any advice please.

I'm following David Greenwood from https://medium.com/@himynamesdave/splunking-the-modern-honey-network-getting-value-from-your-honeypots-data-part-1-d05f13cb9411, to integrate the Splunk.

but the problem I have I don't have the above folder inside my /opt/ folder, below is the screen shot from my mhn-server

Below is my topology, I'm using EVE-NG for this project and the honeypots and mhn-server is configured in a LAN environment, topology screen shot available below; I will generate my own attacks. I will masquerade my IP address to make them like from different regions to get the real-time visualisation on the map.

Please advice how I'm going to integrate Splunk; once Splunk is done than I will start my attacking tasks. I want to address in my Project the Cyber Security Incident Response; As I'm a Cyberist at CompTIA Cyber Ready program, I passed my Network+, Security+ Certs, now working towards CySA+ Cert.

Please advice, many thanks,

Best regards,

Jamal

[Brady Sullivan]

You will then need to do /mhn/scripts/install_hpfeeds-logger-splunk.sh

--
You received this message because you are subscribed to the Google Groups "Modern Honey Network" group.
To unsubscribe from this group and stop receiving emails from it, send an email to modern-honey-net...@googlegroups.com.
To post to this group, send email to modern-hon...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/modern-honey-network/77dd8fe5-46f3-4eb2-9349-75c15bf289d6%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.