For users of @kalilinux and @securityonion products:

I have freed up an old computer to use as a server on my home network again. For an IPS, should I go with #kali #kalipurple or #securityonion , and why?

#SecurityOnion 2.3.220 Hotfix 20230301 Now Available!
https://blog.securityonion.net/2023/03/security-onion-23220-hotfix-20230301.html

#SecurityOnion 2.3.220 now available including:

✅ #Elastic 8.6.2
✅ #Grafana 9.2.10
✅ #FleetDM 4.27.1
✅ #Zeek 5.0.7

and more!

https://blog.securityonion.net/2023/02/security-onion-23220-now-available.html

Looking for a fun #CyberSecurity project? 😀

Want to practice your #ThreatHunting 🔍 and #IncidentResponse skills?

Install #SecurityOnion🧅2.3.220 in a VM:
https://docs.securityonion.net/en/2.3/first-time-users.html

Then follow along with our recent quick #malware analysis blog posts:
https://blog.securityonion.net/search/label/quick%20malware%20analysis

You can then stand up a production deployment and sniff live traffic from a tap or span port. You'll get NIDS alerts, protocol metadata, and full packet capture!
https://docs.securityonion.net/en/2.3/network.html

Then augment that network visibility with host visibility by deploying endpoint agents:
https://docs.securityonion.net/en/2.3/host.html

Once you find something of interest in your network or endpoint logs, you can escalate to a case:
https://docs.securityonion.net/en/2.3/cases.html

Inside the case, you can identify indicators and analyze them using Analyzers:
https://docs.securityonion.net/en/2.3/cases.html#analyzers

Looking for more documentation?

It's built into our web interface for #SecurityOnion 2.3.220 but you can also find it online at:
https://securityonion.net/docs

You can also purchase a printed copy of the documentation at https://securityonion.net/book with proceeds going to Rural Technology Fund!

The printed book also includes an inspiring foreword by @taosecurity and a 20% discount code for our certification and on-demand training!

Help us find a Senior Software Engineer so that we can make #SecurityOnion even better!

https://www.golangprojects.com/remote-golang-job-exn-Remote-Senior-Software-Engineer-Remote-US-citizens-only-Security-Onion-Solutions-LLC-remotejob.html

If you're keen to learn more about #NetworkForensics or #NSM's, blogs like this which walk you through using #SecurityOnion, with a malicious sample from the wild, are great to practice your skills.

#DFIR

https://blog.securityonion.net/2023/02/quick-malware-analysis-fakebat-redline.html

Looking for a fun #CyberSecurity #Infosec project? 😀​

Want to practice your #ThreatHunting 🔍​ and #IncidentResponse skills?

Install #SecurityOnion 🧅​ in a VM:
https://docs.securityonion.net/en/2.3/first-time-users.html

Then follow along with our recent quick #malware analysis blog posts:
https://blog.securityonion.net/search/label/quick%20malware%20analysis

Today's quick #malware analysis with #SecurityOnion: FAKEBAT, REDLINE STEALER, and GOZI/ISFB/URSNIF pcap from 2023-02-03!

Thanks to @malware_traffic for sharing this pcap!

More screenshots:
https://blog.securityonion.net/2023/02/quick-malware-analysis-fakebat-redline.html

#infosec
#infosecurity
#ThreatHunting
#IncidentResponse

Want to learn more about #ThreatHunting with #SecurityOnion?

Only 2 weeks left to register for this NEW 4-day pilot course in #ColumbiaMD!

https://securityonionsolutions.com/training

#infosec
#cybersecurity
#training

Want the best hardware for #SecurityOnion?

Check out our hardware appliances at:
https://securityonionsolutions.com/hardware

If your Security Onion install is still on Ubuntu 18.04 you should upgrade soon as support ends in April. Here's a guide from #SecurityOnion on how to do so:
https://blog.securityonion.net/2023/02/ubuntu-1804-reaches-end-of-ubuntu.html

#SecurityOnion #Ubuntu1804 #Update #EoL #EndOfLife #April #Ubuntu #Zeek #BlueTeam

Want to learn more about #ThreatHunting with #SecurityOnion?

Make sure you sign up for our upcoming 4-day pilot course in #ColumbiaMD!

https://securityonionsolutions.com/training

Analyzing a banner capture system, part one.
https://talesfromthehomelab.com/home-lab/banner-capture-for-fun-and-profit/
#apache #securityonion #

Looking for documentation?

It's built into our web interface for #SecurityOnion 2.3.210 but you can also find it online at:
https://securityonion.net/docs

Looking for a fun #CyberSecurity project? 😀

Want to practice your #ThreatHunting 🔍 and #IncidentResponse skills?

Install #SecurityOnion🧅2.3.210 in a VM:
https://docs.securityonion.net/en/2.3/first-time-users.html

Then follow along with our recent quick #malware analysis blog posts:
https://blog.securityonion.net/search/label/quick%20malware%20analysis

#SecurityOnion 2.3.210 now available including #Elastic 8.6.1, #Suricata 6.0.10, #Zeek 5.0.6, and more!
https://blog.securityonion.net/2023/02/security-onion-23210-now-available.html

@train I haven't used it explicitly for this purpose yet, but #SecurityOnion might be an option.

std_disclaimer.h:
This opinion is mine and does not reflect the views of my employer.

ICYMI, we've got some great new features coming in #SecurityOnion 2.4 and there are some important changes to be aware of!

https://blog.securityonion.net/2023/02/security-onion-in-2022-and-2023.html

#SecurityOnion in 2022 and 2023

https://blog.securityonion.net/2023/02/security-onion-in-2022-and-2023.html

Like #SecurityOnion?

If you haven't already, please click the star on our github repo!

https://github.com/Security-Onion-Solutions/securityonion

Want the best hardware for #SecurityOnion?

Check out our hardware appliances at:
https://securityonionsolutions.com/hardware