Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, and case management. It also includes other tools such as Playbook, osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
Security Onion 2.3 is here!
Security Onion 2.3 reaches End Of Life (EOL) on April 6, 2024:
https://blog.securityonion.net/2023/10/6-month-eol-notice-for-security-onion-23.html
For new installations, please see the 2.4 branch of this repo:
https://github.com/Security-Onion-Solutions/securityonion/tree/2.4/main
If you have an existing 2.3 installation and would like to migrate to 2.4, please see:
https://docs.securityonion.net/en/2.4/appendix.html
Alerts
Dashboards
Hunt
Cases
https://docs.securityonion.net/en/2.3/release-notes.html
https://docs.securityonion.net/en/2.3/hardware.html
https://docs.securityonion.net/en/2.3/download.html
https://docs.securityonion.net/en/2.3/installation.html
https://docs.securityonion.net/en/2.3/faq.html
https://docs.securityonion.net/en/2.3/community-support.html