Quick Data Exfiltration Exercise with Security Onion - 2021-07-14
Рет қаралды 7,020
2 жыл бұрынSpecial thanks to Brad Duncan for sharing this pcap at malware-traffic-analysis.net!
www.malware-traffic-analysis....
If you’re a blue teamer, make sure you hit that Like button and make it turn blue! Don’t forget to subscribe to the channel to help us reach 6,000 subscribers! If you have any words of encouragement for the Security Onion team, please feel free to leave them in the comments below. For questions and problems, please go to securityonion.net/discuss and start a new discussion there.
Download Security Onion:
securityonion.net/download
Documentation:
securityonion.net/docs
Questions or Problems:
If you have questions or problems, please feel free to create a discussion at securityonion.net/discuss
Training:
securityonionsolutions.com/tr...
Hardware Appliances:
securityonionsolutions.com/ha...
@kevinellis9239 2 жыл бұрын
I for one really appreciate what you guys have done and seconion 2.0 still impresses me even months after being announced. And these short videos are great definitely keep them coming. Helps give me training ideals for my team
@security-onion 2 жыл бұрын
Thanks, glad you like it!
@brianmattingly8419 2 жыл бұрын
I know this is a bit elementary ... but what installation are you running that you get a GUI? I'm trying to follow along by installing SO in a VMware Workstation VM. I've imported the PCAP (I had to turn it into an .img file and add as a CD-ROM) but can't click on the "You've imported the PCAP, use this very long link" in order to paste it into a browser. Any tips?
@security-onion 2 жыл бұрын
You can get a GUI by installing the Analyst environment: docs.securityonion.net/en/2.3/analyst-vm.html If you have further questions or problems, please start a new discussion at: securityonion.net/discuss Thanks!
@DONBIZZY3 Жыл бұрын
Thanks for the video, do you have any resources available for security onion without the GUI, just linux?
@security-onion Жыл бұрын
If you have questions or problems, please start a new discussion at securityonion.net/discuss
@ryoka1g 2 жыл бұрын
Greetings i have a question. I have cisco 9200 switch and i have created a span port that i have sent it directly to my esxi (to security onion port for traffic sniffing) and works really good. But i have decided that i dont want the whole payload and total packet capturing. Instead i want NetFlow but i cant find a way to send NetFlow to Security Onion. Is there a way??
@security-onion 2 жыл бұрын
If you have questions or problems, please start a new discussion at securityonion.net/discuss Thanks!
@chromefinch Жыл бұрын
Awesome walkthrough! Thank you! I tested this with a chrome.exe download, but the hash didn't match. Is that expected?
@security-onion Жыл бұрын
If you have questions or problems, please start a new discussion at securityonion.net/discuss. Thanks!
@gguestdub3518 7 ай бұрын
A question, how i create custom alerts please help me uu
@security-onion 7 ай бұрын
If you have questions or problems, please start a new discussion at securityonion.net/discuss
@cesaralejandrocalle6959 2 жыл бұрын
Como puedo liberar espacio en mi servidor onion?, que debo borrar?
@security-onion 2 жыл бұрын
If you have questions or problems, please start a new discussion at securityonion.net/discuss
Security Onion
Рет қаралды 10 М.
The PC Security Channel
Рет қаралды 1,2 МЛН
Security Onion
Рет қаралды 11 М.
Gerald Auger, PhD - Simply Cyber
Рет қаралды 56 М.
Attack Detect Defend
Рет қаралды 61 М.