Installing & Configuring Suricata

Рет қаралды 85,915

HackerSploit

Күн бұрын

Пікірлер: 51

@DahDaveman 10 ай бұрын

This video can't get enough likes! You helped me work out the bugs in my suricata install, thank you!

@armanqusham5345 Жыл бұрын

Thank you for this detailed video on how to install suricata and configure it. Really helped with my final year project in uni

@primescope6874 2 жыл бұрын

Great video. You are producing some excellent content as I'm studying cybersecurity. Many thanks and much appreciated. Keep up the good work.

@ChapalPuteh_ Жыл бұрын

btw, the rules folder for freshly ubuntu vm are stored in usr/share/suricata/rules .. others will face this error when they want to edit the local.rules. Just simply change the mentioned directories ..

@umarfarouk7764 11 ай бұрын

Thanks a million

@hugo_guzman 7 ай бұрын

weird, I recently installed ubuntu 22.04, and Suricata, and the rules files are in the /var/lib/suricata/rules directory: sudo ls -la /var/lib/suricata/rules/ total 27580 drwxr-x--- 2 root root 4096 Mar 27 19:45 . drwxr-xr-x 4 root root 4096 Mar 27 19:45 .. -rw-r--r-- 1 root root 3228 Mar 27 19:45 classification.config -rw-r--r-- 1 root root 28229228 Mar 27 19:45 suricata.rules

@oshinubirotimirasheed3131 Жыл бұрын

thank you for sharing this knowledge I look forward to taking more classes from you.

@jiesikkoo7874 4 ай бұрын

Hello, firstly thanks for the video you provided its a big help but i am facing a problem is that the rules i set customly for icmp ping its not working and not generating any alert as you does why is it? your response will be very helpful

@samiehessi8163 2 жыл бұрын

This was indeed a high quality content. Thanks!

@m-electronics5977 Жыл бұрын

First: A big thanksgiving for that great video(s) about Suricata und IDS, now I unterstand it also👍👍👍 But when I want to monitor(not Control) all the traffic that are going in and out of my network I must run the Suricata IDS on a Firewall or router or something like this where the traffic goes trough?

@Tottte 7 ай бұрын

If there are idiots out there like me. You are not supposed to write "1" in the beginning of the rule. You can check the there is any syntax error of the rule with "suricata -c /etc/suricata/suricata.yaml -i [INTERFACE]"

@FredPhillips32169 2 жыл бұрын

Brilliant having the "Register for Part 2" pop up right after an easily edited whoopsie.

@tareq06 10 ай бұрын

Thank you sir... You made my day

@hassanahmed87987 2 жыл бұрын

When you'll upload next video of suricata??

@rafaelhengky8915 11 ай бұрын

Hi. I managed to install Suricata on VMWare and it has successfully captured ping/icmp packet destinate to it. But it didn't capture any network traffic. Any suggestion?

@tyalva1814 Жыл бұрын

I get an error for the update at 11:14 mark [ERRCODE: SC_ERR_CONF_YAML_ERROR(242)] - The configuration file must begin with the following two lines: %YAML 1.1 and ---

@jibraelaryaanentertainment1263 3 ай бұрын

Just brilliant!!

@0xr1kk07 2 жыл бұрын

Hi sir, can you also do a tutorial on ELK installation please. Thank you

@kryptonic010 2 жыл бұрын

I agree. You know we like to see pretty graphs.

@m-electronics5977 Жыл бұрын

But Suricata doesn't have a Web UI? I think I saw something about that

@richardbranson8117 2 жыл бұрын

love this man

@ae_world_Akash 2 жыл бұрын

Hi sir I am new subscriber

@slevinhyde3212 7 ай бұрын

Definitely is quality content

@Polalis12 Жыл бұрын

When I install suricata I do not have config files in /etc/suricata. How to fix that?

@salindabandara4471 2 жыл бұрын

Hello sir. I try update my rule set in suricata. But after give the update-suricata command i got the following error. Err Code: SC_ERR_CONF_YAML_ERROR(242) Can you help me to how to handle this error

@dhehibiali3283 2 жыл бұрын

Hi Salinda Did you find a solution for this error thank you

@0xr1kk07 2 жыл бұрын

Thank you!

@firebeasth8009 2 жыл бұрын

Thanks for this!

@sexualsmile 2 жыл бұрын

Its finally here kzbin.infoNlhBppjxnqs?feature=share

@goodboy-mn2qp 6 ай бұрын

it's very helpful

@FredPhillips32169 2 жыл бұрын

If you are trying to make the flow ID lees predictable then don't use the default seed of 0.

@hanishhanish4861 2 жыл бұрын

Really great !

@raymencliff4296 2 жыл бұрын

I like always your video

@FredPhillips32169 2 жыл бұрын

External_Net != Home_net what about broadcast & multicast?

@8080VB Жыл бұрын

uhh? if you provide the correct gateway/CIDR . everything should be good .

@dedisubandi3391 Жыл бұрын

Great video..!!!!

@marcostiantoni Жыл бұрын

Thank you for the video. I have the rules only in /usr/share/suricata/rules. How can I get in them in default-rule-path: /var/lib/suricata/rules?

@swarajyamdeepakraj-kz4pd 11 ай бұрын

i am also facing the same problem. How you managed>??

@marcosfleitas9605 9 ай бұрын

actually all your rules that are in /usr/share/suricata/rules are compiled in /var/lib/suricata/rules suricata.rules

@OthmanAlikhan Жыл бұрын

Thanks for the video =)

@onecarry1532 2 жыл бұрын

Beautiful!

@dedisubandi3391 Жыл бұрын

Great video!!!!!

@goodboy-mn2qp 6 ай бұрын

عاشت ايدك

@ChapalPuteh_ Жыл бұрын

tq sir

@sotecluxan4221 2 жыл бұрын

Great!

@atanumondal7879 Жыл бұрын

14:00

@fairyTaleAnimations 2 жыл бұрын

@reskun 8 ай бұрын

would give 100 likes if I could

@MaxesSig8 2 жыл бұрын

first comment

@whothefoxcares 11 ай бұрын

I saw the logs. I'm a lumberjack and you're not 🙂 zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz.