security onion

RomajhonRomajhon Member Posts: 5 ■□□□□□□□□□
Do we have any diagnostic tools in security onion like we have in MS (Belarc advisor, MAP, Microsoft baseline security analyzer)


  • VeritiesVerities Member Posts: 1,162
    Your question is literally answered on the first page of the vendor's web site:

    "Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It’s based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xplico, NetworkMiner, and many other security tools."

    You should probably start doing your own research now on what each of the included products does.
  • chrisonechrisone Senior Member Member Posts: 2,200 ■■■■■■■■■□
    Hmmm your question is vague, were you looking for a list of tools within the distro?

    Or were you trying to check the health status of the actual SO deployment? if you are up and running and need to check the health of the system use "sudo service nsm status"
    Certs: CISSP, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, AZ-900, VHL:Advanced+, Retired Cisco CCNP/SP/DP
    2021 Goals
    Courses: eLearnSecurity - PTXv2 (complete), SANS 699: Purple Team Tactics (completed), PentesterLabs Pro (ongoing)
    Certs: eCPTXv2, CRTE, AZ-500, SC-200 (fail 1st attempt)
Sign In or Register to comment.