Wes Lambert – Medium

Apr 7, 2021

Monitoring Adversaries at Your Trapdoor with Security Onion

Introduction There’s been quite a buzz 🐝 around honeypots and honeytokens recently. Not long ago, Chris Sanders released his latest book, Intrusion Detection Honeypots: Detection Through Deception. In the book, Chris does an excellent job of walking through the various ways that honeypots can be leveraged for detection purposes. In this…

11 min read

Monitoring Adversaries at Your Trapdoor with Security Onion

Mar 3, 2021

Zero Dollar Detection and Response Orchestration with n8n, Security Onion, TheHive, and Velociraptor

NOTE: This article was written for previous versions of Security Onion that included TheHive. TheHive is no longer included in Security Onion (Security Onion now uses its native Cases module for case management) As a result, this article is scheduled to be updated very soon, although many other components should…

Infosec

19 min read

Zero Dollar Detection and Response Orchestration with n8n, Security Onion, TheHive, and…

Jul 20, 2018

Security Onion + LimaCharlie

Introduction It was recently requested on https://www.reddit.com/r/securityonion that advice be provided on how to integrate logs from LimaCharlie to Security Onion. Hopefully, this article should help to explain the steps involved. While OSSEC and Wazuh are both great options for integrating host-based detection and response with Security Onion (OSSEC is current…

Security Onion

6 min read