Intrusion Detection System Tutorial: Setup Security Onion – Digitalmunition

Videos Intrusion Detection System Tutorial: Setup Security Onion

Published on August 9th, 2016 📆 | 2046 Views ⚑


Intrusion Detection System Tutorial: Setup Security Onion

In this video, I’ll show you how to setup Security Onion, an open-source intrusion detection system packaged into a Linux distro. SecOnion is perfect for getting an intrusion detection system up and running quickly, and has some cool additional features like HIDS, SIEM, root kit detection, and file integrity monitoring.

For this to work, you will need a switch capable of SPANing/mirroring network traffic to a specific port. I will release a video/information about this process. For a small home network, I’d recommend the following:

I’m also going to upload a video about utilizing SecOnion and Splunk to ingest and correlate the data/alerts your Intrusion detection system will generate. SecOnion comes with ELSA, which you could use (along with Kibana) to display, visualize and create alerts.

Finally, i’ll upload a video detailing the install and integration of the Collective Intelligence framework with your IDS/SIEM. Expect these videos within the next couple weeks.

Links for this video:


Security Onion:

2016-08-09 22:42:21


Tagged with:

9 Responses to Intrusion Detection System Tutorial: Setup Security Onion

  1. looking forward to the follow-up video, nice explanation!

  2. akoblentz says:

    Hey, did you ever do part2 adding in the splunk piece?

  3. hi where is your next video

  4. Thanks for the video hero……..

  5. SerottaPDX says:

    Hi, I checked out your vids, but didnt see a follow up video to this… thanks!

  6. zHacK says:

    could you explain to me about an IP configuration. my primary operating system using static IP how about configure in seconion installation. when i use this tutorial i can't monitoring when i open some website. is it wrong or not at the intallation. thank you before.

Leave a Reply ✍