Looking for a fun #CyberSecurity #Infosec project? 
Want to practice your #ThreatHunting 
and #Detection 
skills?
Install the NEW #SecurityOnion 
2.4.100 in a VM:
https://docs.securityonion.net/en/2.4/first-time-users.html
Then follow along with our recent quick #malware analysis posts:
https://blog.securityonion.net/search/label/quick%20malware%20analysis
#SecurityOnion 2.4.30 now available including some new features and lots of bug fixes!
https://blog.securityonion.net/2023/11/security-onion-2430-now-available.html
using only one or two system boards, as small as possible, how would you make a single device that housed both:
1. a #firewall, like #OPNsense or #pfSense
2. a full IDPS, like #SecurityOnion
i want to build a single housing that holds these two systems. idk if i can combine them with one system/ OS? how do you get full IDPS of a WAN port cheaply without a switch for port mirroring?
this would just be for home use, 1Gbps
Hey, #ThreatHunting peeps! Video of my #SecurityOnion Conf 2023 talk last week, "Achieving #PEAK Performance: Introducing the PEAK Threat Hunting Framework" is out. If you're looking for a good introduction to the framework, this might be your lucky day!
After more than 12 months of development, 3 Beta releases, and 2 Release Candidates, we are thrilled to announce that #SecurityOnion 2.4 has now reached General Availability (GA)!
https://blog.securityonion.net/2023/08/security-onion-24-has-reached-general.html
#SecurityOnion 2.4 Release Candidate 2 (RC2) Now Available!
https://blog.securityonion.net/2023/08/security-onion-24-release-candidate-2.html
#SecurityOnion 2.3.260 now available including:
Suricata 6.0.13Grafana 9.2.19CyberChef 10.4.0
and more!
https://blog.securityonion.net/2023/06/security-onion-23260-now-available.html
Security Onion Documentation printed book now updated for #SecurityOnion 2.3.190!
https://blog.securityonion.net/2022/12/security-onion-documentation-printed.html
#SecurityOnion 2.3.190 now available!
Featuring:#Suricata 6.0.9#Zeek 5.0.414 new #Zeek plugins77 new log pipelines15 new and improved dashboards
and much more!
More info:
https://blog.securityonion.net/2022/12/security-onion-23190-now-available.html
Trying to get my alerts cleared out so when my guest network gets lit up with extended family devices and I can see if anything fun is going on. #securityonion
I just published "Security Onion on Proxmox", a guide to running the opensource security monitoring software in a VM.
It's trickier than you'd think to get traffic to pass all the way from a switch SPAN port to the VM. You have to create a virtual "OVS Bridge" in the Proxmox GUI, then a "mirror" object from the CLI. It winds up looking like:
[switch SPAN port] > [physical NIC] > [virtual OVS Bridge] > [mirror object on VM]
#SecurityOnion 2.3.182 Now Available including #Zeek 5.0.3!
https://blog.securityonion.net/2022/11/security-onion-23182-now-available.html
{
"role" : “#infosec #OT #IT #consultant",
"certifications" : ["#CISA", "#CRISC", "#CISSP", "#CEH"],
"interrests" : ["#python", "#nixos", "#linux", "#qubes", "#graphene", "#securityonion", "#proxmox", "#openwrt", "#opnsense", "#routeros"],
"hobbies" : ["#photography", "#hamradio", "#amateurradio", "#hillwalking", "#climbing", "volleyball"],
"HAMcallsign" : "OM0MO",
“location” : [“#Devin”, "#Bratislava", “#Slovakia”, "#Europe"],
"photolinks" : ["https://www.flickr.com/photos/martinbrechtl", "https://unsplash.com/@Majc0", "https://www.qrz.com/db/OM0MO"],
}
5555 
(D.Burch) 
