Friday, August 3, 2012

Security Onion for Splunk 1.1.3

Security analyst Brad Shoop has sent in a new tool for managing active rules on Security Onion and Splunk - a unified GUI that allows for rule searches in a variety of new ways, includes a workflow useful for those monitoring rules from different sets, and helps make documentation available with as little hassle as possible. You can get full details here, and code if you drop Brad a line. Happy Snorting!