Thanks for this that you heard out the comments from the last video and created a deeper one with other tools in compression

Security Onion with some good network taps is a potent combo. I love it on my home network.

I think, graylog would be a great addition to my stack, since at work we use Splunk (which is very expensive). Graylog seems somewhat similar to splunk.

Excellent insights, appreciated!

Hey Tom, how about doing an updated video to some of the other tools you guys use i.e., ninjaone, sentinelone, etc

Thanks for the video. Can we build Wazuh on latest Graylog Open version (replacing filebeat) with Grafana?

am struggling a looot with writing my own syslog decoders in ,i wonder if adding graylog could help !

You definitely saw my comment on your security onion video. Thanks for this comparison. There are a lot of tools out there but knowing which ones to use depending on your situation can be difficult. This was really helpful though.

I hate wazuh and ran from anything that runs on opensearch. You add some opensearch dashboard and use it, and then when you update your wazuh, it wont start back saying that some dashboards from opensearch are no longer supported.... and then you have a bug, lets say your wazuh version is 4.6.0, and you update your endpoint wazuh agent from 4.6.1 but dont update ur server bcuz you dont want the problem with it not starting after updating, but your wazuh gonna alert that your agent OUTDATED bcuz 4.6.1 not equal to 4.6.0. I know its free but one of the worst open source product that ive used

Thank you

Nobody wants to steal anything on your "homelab."