Security Onion has Suricata installed? Where?

[Eilidh Ratcliffe]

Help!!

Doing my dissertation and require Suricata. 

When I has difficulty downloading onto Server 2016 I was told about Security Onion. After looking into it I thought Suricata among others were already available on S.Onion: Kibana, Sguil, Squert and CyberChef are the other software seemingly available.
So I tried to install via the Terminal. Get as far as the ./configure make make install and then nothing. Tried installing Zeek and had the same issue. 

What am I doing wrong or is this a common problem?

I've attached what I have installed in Downloads and the Home directory, as well as terminal errors I kept getting yesterday.

I'm not a wizz tech at Virtual Machines so would be very appreciative of any tips, help and/or advice available.

Thanks in advance,

Eilidh R

[Wes Lambert]

Suricata is installed as a package, as-is Zeek.

You should not need to install anything extra.

Initially, you simply run through sosetup, then choose your options, and everything should be set up.

You can view the status with:

sudo so-status

--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/594c1108-9171-4784-ad1f-a93557daa101%40googlegroups.com.

--

https://twitter.com/therealwlambert

https://securityonion.net/

[Eilidh Ratcliffe]

I thought that it was preinstalled, but the first time I setup I couldn't see it, so I've just set up again and attached the results from sudo so-status.
Maybe I'm just not understanding it correctly? I thought I would need to install and run the Suricata package

On Thursday, 27 February 2020 22:36:08 UTC, Wes wrote:

Suricata is installed as a package, as-is Zeek.

You should not need to install anything extra.

Initially, you simply run through sosetup, then choose your options, and everything should be set up.

You can view the status with:

sudo so-status

On Thu, Feb 27, 2020 at 10:14 AM Eilidh Ratcliffe <eilidh_ra...@hotmail.co.uk> wrote:

Help!!

Doing my dissertation and require Suricata. 

When I has difficulty downloading onto Server 2016 I was told about Security Onion. After looking into it I thought Suricata among others were already available on S.Onion: Kibana, Sguil, Squert and CyberChef are the other software seemingly available.
So I tried to install via the Terminal. Get as far as the ./configure make make install and then nothing. Tried installing Zeek and had the same issue. 

What am I doing wrong or is this a common problem?

I've attached what I have installed in Downloads and the Home directory, as well as terminal errors I kept getting yesterday.

I'm not a wizz tech at Virtual Machines so would be very appreciative of any tips, help and/or advice available.

Thanks in advance,

Eilidh R

--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.

To unsubscribe from this group and stop receiving emails from it, send an email to securit...@googlegroups.com.

To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/594c1108-9171-4784-ad1f-a93557daa101%40googlegroups.com.

[Eilidh Ratcliffe]

Performed the switch from Snort to Suricata.
I think I have worked out.

Thank you for your reply. Had I know of the sudo so-status cmd, I would have worked this out last week!

Many thanks again,

Eilidh