Sguil for Windows
Is anyone familiar with this? I installed it last night, despite the documentation being extremely out of date, If anyone wants to shoot me instructions for makinga an online youtube video, i'd love to make a tutorial...
Anyway, I can connect to the demo server, but I don't have any instructions for connecting Sguil to my snort install at home. I'm running a single snort instance on a single PC, and I want to use Sguil as a front end to monitor and review the results. Anyone know how to do this?
Anyway, I can connect to the demo server, but I don't have any instructions for connecting Sguil to my snort install at home. I'm running a single snort instance on a single PC, and I want to use Sguil as a front end to monitor and review the results. Anyone know how to do this?
Comments
-
SephStorm
Member Posts: 1,731 ■■■■■■■□□□
-
chaser7783
Member Posts: 154
odd when you start sguil with snort running you should be able to chose a local sensor. I haven't messed with sguil a whole lot, I prefer snorby https://snorby.org/ . I think the reporting is cleaner. -
SephStorm
Member Posts: 1,731 ■■■■■■■□□□
My front end has to be windows for the moment, i'm not seeing any windows installation options for snorby, and it has too many pre-reqs.