Basic threat hunting on IDS events
21 views
Skip to first unread message
Alain Barrera
Nov 22, 2021, 2:09:53 PM11/22/21
to SELKS
How to configure Basic threat hunting on IDS events in SELKS version comunity
Peter Manev
Nov 23, 2021, 2:29:05 AM11/23/21
to Alain Barrera, SELKS
Hi Alain,
Is that the ISO you have deployed or the docker version ?
The ISO needs to complete sucessfulyly the first time setup -
https://github.com/StamusNetworks/SELKS/wiki/First-time-setup
The docker takes care of that during startup/deployment.
After that you are all set to replay or sniff traffic - the dashboards
should populate.
Thank you
On Mon, Nov 22, 2021 at 8:09 PM Alain Barrera <arta...@gmail.com> wrote:
>
>
> How to configure Basic threat hunting on IDS events in SELKS version comunity
>
> --
> IRC: Let's talk about SELKS on Freenode IRC on the #SELKS channel
> Wiki: https://github.com/StamusNetworks/SELKS/wiki
> GitHub: https://github.com/StamusNetworks/SELKS
> Blog: https://www.stamus-networks.com/theblog/
> Twitter: @StamusN
> g+: Stamus Networks
> ---
> You received this message because you are subscribed to the Google Groups "SELKS" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to selks+un...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/selks/28e5f504-7b71-48d6-abdd-b7081abc9b29n%40googlegroups.com.
--
Regards,
Peter Manev
Is that the ISO you have deployed or the docker version ?
The ISO needs to complete sucessfulyly the first time setup -
https://github.com/StamusNetworks/SELKS/wiki/First-time-setup
The docker takes care of that during startup/deployment.
After that you are all set to replay or sniff traffic - the dashboards
should populate.
Thank you
On Mon, Nov 22, 2021 at 8:09 PM Alain Barrera <arta...@gmail.com> wrote:
>
>
> How to configure Basic threat hunting on IDS events in SELKS version comunity
>
> IRC: Let's talk about SELKS on Freenode IRC on the #SELKS channel
> Wiki: https://github.com/StamusNetworks/SELKS/wiki
> GitHub: https://github.com/StamusNetworks/SELKS
> Blog: https://www.stamus-networks.com/theblog/
> Twitter: @StamusN
> g+: Stamus Networks
> ---
> You received this message because you are subscribed to the Google Groups "SELKS" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to selks+un...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/selks/28e5f504-7b71-48d6-abdd-b7081abc9b29n%40googlegroups.com.
--
Regards,
Peter Manev
Reply all
Reply to author
Forward
0 new messages