security onion

RomajhonRomajhon Member Posts: 5 ■□□□□□□□□□
in Linux+
Do we have any diagnostic tools in security onion like we have in MS (Belarc advisor, MAP, Microsoft baseline security analyzer)
· Share on FacebookShare on Twitter

Comments

  • VeritiesVerities Member Posts: 1,162
    Your question is literally answered on the first page of the vendor's web site:

    "Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It’s based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xplico, NetworkMiner, and many other security tools."

    https://securityonion.net

    You should probably start doing your own research now on what each of the included products does.
    · Share on FacebookShare on Twitter
  • chrisonechrisone Member Posts: 2,278 ■■■■■■■■■□
    Hmmm your question is vague, were you looking for a list of tools within the distro?

    Or were you trying to check the health status of the actual SO deployment? if you are up and running and need to check the health of the system use "sudo service nsm status"
    Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
    2023 Cert Goals: SC-100, eCPTX
    · Share on FacebookShare on Twitter
Sign In or Register to comment.