Installing & Configuring Suricata
HTML-код
- Опубликовано: 19 сен 2024
- This video covers the process of installing and configuring Suricata for intrusion detection. Suricata is a free and open-source threat detection engine. It does this by combining IDS, IPS, and network security monitoring.
You can register for part 2 of this series for free here: bit.ly/3yJqT3c
//LINKS
Suricata: suricata.io/
Suricata GitHub Repo: github.com/OIS...
Video Slides: bit.ly/3PHmhk9
Register For Part 2 Of This Series: bit.ly/3yJqT3c
Get 100$ In Free Linode Credit: bit.ly/39mrvRM
//PLATFORMS
BLOG ►► bit.ly/3qjvSjK
FORUM ►► bit.ly/39r2kcY
ACADEMY ►► bit.ly/39CuORr
//SOCIAL NETWORKS
TWITTER ►► bit.ly/3sNKXfq
DISCORD ►► bit.ly/3hkIDsK
INSTAGRAM ►► bit.ly/3sP1Syh
LINKEDIN ►► bit.ly/360qwlN
PATREON ►► bit.ly/365iDLK
MERCHANDISE ►► bit.ly/3c2jDEn
//BOOKS
Privilege Escalation Techniques ►► amzn.to/3ylCl33
Docker Security Essentials (FREE) ►► bit.ly/3pDcFuA
//SUPPORT THE CHANNEL
NordVPN Affiliate Link (73% Off) ►► bit.ly/3DEPbu5
Get $100 In Free Linode Credit ►► bit.ly/39mrvRM
Get started with Intigriti: go.intigriti.c...
//CYBERTALK PODCAST
Spotify ►► spoti.fi/3lP65jv
Apple Podcasts ►► apple.co/3GsIPQo
//WE VALUE YOUR FEEDBACK
We hope you enjoyed the video and found value in the content. We value your feedback, If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms.
//THANK YOU!
Thanks for watching!
Благодарю за просмотр!
Kiitos katsomisesta
Danke fürs Zuschauen!
感谢您观看
Merci d'avoir regardé
Obrigado por assistir
دیکھنے کے لیے شکریہ
देखने के लिए धन्यवाद
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
-----------------------------------------------------------------------------------
#Cybersecurity#BlueTeam
This video can't get enough likes! You helped me work out the bugs in my suricata install, thank you!
Great video. You are producing some excellent content as I'm studying cybersecurity. Many thanks and much appreciated. Keep up the good work.
Thank you for this detailed video on how to install suricata and configure it. Really helped with my final year project in uni
btw, the rules folder for freshly ubuntu vm are stored in usr/share/suricata/rules .. others will face this error when they want to edit the local.rules. Just simply change the mentioned directories ..
Thanks a million
weird, I recently installed ubuntu 22.04, and Suricata, and the rules files are in the /var/lib/suricata/rules directory:
sudo ls -la /var/lib/suricata/rules/
total 27580
drwxr-x--- 2 root root 4096 Mar 27 19:45 .
drwxr-xr-x 4 root root 4096 Mar 27 19:45 ..
-rw-r--r-- 1 root root 3228 Mar 27 19:45 classification.config
-rw-r--r-- 1 root root 28229228 Mar 27 19:45 suricata.rules
This was indeed a high quality content. Thanks!
You should upload to Rumble as well. I know myself, and a fair chunk of other people are moving away from Google, and I would hate to lose your content.
he's on odysee
@@jacksoncremean1664 thank you
thank you for sharing this knowledge I look forward to taking more classes from you.
Just brilliant!!
Hello, firstly thanks for the video you provided its a big help but i am facing a problem is that the rules i set customly for icmp ping its not working and not generating any alert as you does why is it? your response will be very helpful
Brilliant having the "Register for Part 2" pop up right after an easily edited whoopsie.
Thank you sir... You made my day
love this man
First: A big thanksgiving for that great video(s) about Suricata und IDS, now I unterstand it also👍👍👍
But when I want to monitor(not Control) all the traffic that are going in and out of my network I must run the Suricata IDS on a Firewall or router or something like this where the traffic goes trough?
Thanks for this!
Its finally here
ruclips.net/user/shortsNlhBppjxnqs?feature=share
When you'll upload next video of suricata??
Definitely is quality content
Hi sir, can you also do a tutorial on ELK installation please. Thank you
I agree. You know we like to see pretty graphs.
Really great !
Hi. I managed to install Suricata on VMWare and it has successfully captured ping/icmp packet destinate to it. But it didn't capture any network traffic. Any suggestion?
I like always your video
I get an error for the update at 11:14 mark [ERRCODE: SC_ERR_CONF_YAML_ERROR(242)] - The configuration file must begin with the following two lines: %YAML 1.1 and ---
Thank you!
If there are idiots out there like me. You are not supposed to write "1" in the beginning of the rule. You can check the there is any syntax error of the rule with "suricata -c /etc/suricata/suricata.yaml -i [INTERFACE]"
it's very helpful
Thanks for the video =)
When I install suricata I do not have config files in /etc/suricata. How to fix that?
Great video!!!!!
Great video..!!!!
Hello sir. I try update my rule set in suricata. But after give the update-suricata command i got the following error. Err Code: SC_ERR_CONF_YAML_ERROR(242)
Can you help me to how to handle this error
Hi Salinda
Did you find a solution for this error
thank you
But Suricata doesn't have a Web UI? I think I saw something about that
Beautiful!
Hi sir I am new subscriber
If you are trying to make the flow ID lees predictable then don't use the default seed of 0.
External_Net != Home_net what about broadcast & multicast?
uhh? if you provide the correct gateway/CIDR . everything should be good .
عاشت ايدك
Great!
tq sir
14:00
F
first comment
would give 100 likes if I could
I saw the logs. I'm a lumberjack and you're not 🙂 zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz.
Its finally here
ruclips.net/user/shortsNlhBppjxnqs?feature=share
Thank you for the video. I have the rules only in /usr/share/suricata/rules. How can I get in them in default-rule-path: /var/lib/suricata/rules?
i am also facing the same problem. How you managed>??
actually all your rules that are in /usr/share/suricata/rules are compiled in /var/lib/suricata/rules suricata.rules