security onion

RomajhonRomajhon Posts: 5Member ■□□□□□□□□□
Do we have any diagnostic tools in security onion like we have in MS (Belarc advisor, MAP, Microsoft baseline security analyzer)


  • VeritiesVerities Posts: 1,162Member
    Your question is literally answered on the first page of the vendor's web site:

    "Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It’s based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xplico, NetworkMiner, and many other security tools."

    You should probably start doing your own research now on what each of the included products does.
  • chrisonechrisone CISSP, CRTP, eCPPT, LFCS, CEH, Azure Fundamentals, Retired Cisco NPs Posts: 1,873Member ■■■■■■■■□□
    Hmmm your question is vague, were you looking for a list of tools within the distro?

    Or were you trying to check the health status of the actual SO deployment? if you are up and running and need to check the health of the system use "sudo service nsm status"
    2019 Goals:
    Courses: Real World Red Team Attacks- AppSec Cali 2019 (complete), Active Directory Attacks for Red and Blue Teams Advanced Edition - BlackHat (completed),
    Certs: Certified Red Team Professional - Pentester Academy (passed!), Azure Fundamentals AZ-900 (passed!), Azure Security Engineer Associate AZ-500 (in-progress)
Sign In or Register to comment.