Version of ELK Stack
Brian Dorr
- Zeek 3.0.8
- Snort 2.9.16.1
- Elastic 6.8.11
- CyberChef 9.21.0
Doug Burks
I was reading on the blog that the versions below are the following on Hybrind Hunter RC2
- Zeek 3.0.8
- Snort 2.9.16.1
- Elastic 6.8.11
- CyberChef 9.21.0
How can we check the version of kibana, logstash that we are running. Reason I ask is that I went to send sysmon logs utilizing winlogbeats to Hybrid Hunter. What version am I supposed to get.
Thanks,Brian--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/6f4325b4-6133-49ca-a9b7-a5ea401142afn%40googlegroups.com.
Founder and CEO
Security Onion Solutions, LLC
bdor...@gmail.com
Doug,
Thanks a lot, feel stupid now lol, but thanks for the quick reply…
Brian
From: securit...@googlegroups.com <securit...@googlegroups.com> On Behalf Of Doug Burks
Sent: Tuesday, September 1, 2020 11:28 AM
To: securit...@googlegroups.com
Subject: Re: [EXTERNAL] [security-onion] Version of ELK Stack
Hi Brian,
Replies inline.
On Tue, Sep 1, 2020 at 11:12 AM Brian Dorr <bdor...@gmail.com> wrote:
I was reading on the blog that the versions below are the following on Hybrind Hunter RC2
- Zeek 3.0.8
- Snort 2.9.16.1
- Elastic 6.8.11
- CyberChef 9.21.0
Those version numbers look like they are for Security Onion 16.04.7.1 (*not* 2.1 RC2):
How can we check the version of kibana, logstash that we are running. Reason I ask is that I went to send sysmon logs utilizing winlogbeats to Hybrid Hunter. What version am I supposed to get.
If you are running Security Onion 2.1 RC2 and want to check the version of Kibana, you can go into Kibana to Stack Management and it will show you the version number:
As you can see, Security Onion 2.1 RC2 runs Elastic 7.8.1 and so you'll want to match that version when you download Winlogbeats.
We also provide a direct download link for your convenience if you go to SOC and then Downloads:
Clicking the Winlogbeat link on that Downloads page will automatically download the correct version.
For more information, please see:
Hope that helps!
Thanks,
Brian
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/6f4325b4-6133-49ca-a9b7-a5ea401142afn%40googlegroups.com.
--
Doug Burks
Founder and CEO
Security Onion Solutions, LLC
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/CAJ%2BhwWCxR0sPFuC1xP1y8u9fRoquwb4V-ptisbdzNZ--FkU5iA%40mail.gmail.com.