Security onion

Full-featured SIEM platforms may be cost-prohibitive for some organizations. One option that is available is the open source platform security onion. The SecurityOnion ties a wide range of security tools, such as OSSEC, Suricata, and Snort, into a single platform. Security onion also has features such as dashboards and tools for deep analysis of log files.

For example, the following screenshot shows the level of detail available:

Although installing and deploying the Security Onion may require some resources in time, it is a powerful low-cost alternative providing a solution to organizations that cannot deploy a full-featured ...

Get Digital Forensics and Incident Response now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.