CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
fe2d9340437293de51dc460c4dcd9b11c7b51ddd
securityonion/README.md
Mike Reeves fe2d934043 Update Readme
2018-11-02 15:31:59 -04:00

57 lines
2.4 KiB
Markdown
Raw Blame History

# Security Onion Hybrid Hunter Tech Preview 1.0.1
**Warnings and Disclaimers**
This technology PREVIEW is PRE-ALPHA, BLEEDING EDGE, and TOTALLY UNSUPPORTED!
If this breaks your system, you get to keep both pieces!
This script is a work in progress and is in constant flux.
This script is intended to build a quick prototype proof of concept so you can see what our ultimate ELK configuration might look like. This configuration will change drastically over time leading up to the final release.
Do NOT run this on a system that you care about!
Do NOT run this on a system that has data that you care about!
This script should only be run on a TEST box with TEST data!
This script is only designed for standalone boxes and does NOT support distributed deployments.
Use of this script may result in nausea, vomiting, or a burning sensation.
Installation:
If you are using CentOS 7 there are a couple pre-requisites:
```
sudo yum -y install bind-utils
sudo hostnamectl set-hostname YOURHOSTNAME
sudo reboot
```
Once you resolve those requirements or are using Ubuntu 16.04 do the following:
```
git clone https://github.com/Security-Onion-Solutions/securityonion-saltstack
cd securityonion-saltstack
sudo bash so-setup-network.sh
```
Allow Access to Kibana:
For a single host:
```
sudo /opt/so/saltstack/pillar/firewall/addfirewall.sh analyst 192.168.30.1
```
For a network range:
```
sudo /opt/so/saltstack/pillar/firewall/addfirewall.sh analyst 192.168.30.0/24
```
Then connect to your master via https://YOURMASTER
See the [FAQ](https://github.com/Security-Onion-Solutions/securityonion-saltstack/wiki/FAQ) on the Hybrid Hunter wiki.
**Warnings and Disclaimers**
This technology PREVIEW is PRE-ALPHA, BLEEDING EDGE, and TOTALLY UNSUPPORTED!
If this breaks your system, you get to keep both pieces!
This script is a work in progress and is in constant flux.
This script is intended to build a quick prototype proof of concept so you can see what our ultimate ELK configuration might look like. This configuration will change drastically over time leading up to the final release.
Do NOT run this on a system that you care about!
Do NOT run this on a system that has data that you care about!
This script should only be run on a TEST box with TEST data!
This script is only designed for standalone boxes and does NOT support distributed deployments.
Use of this script may result in nausea, vomiting, or a burning sensation.
Reference in New Issue View Git Blame Copy Permalink