SELKS 1.0 Released, Linux for network security management
SELKS 1.0 Released, Linux for network security management
SELKS, a product of Stamus Networks, is a Debian-based live distribution designed for network security management. It provides a complete and ready-to-use Suricata IDS/IPS ecosystem with its own graphic rule manager. The system also includes Kibana IDS/NSM dashboards (for visualising logs and other time-stamped data) a Scirius (a rules management interface for Suricata). SELKS is released under the GNU GPLv3 licence.
- S – Suricata IDPS
- E – Elasticsearch
- L – Logstash
- K – Kibana
- S – Scirius
SELKS 1.0 comes with 10 pre-installed Kibana IDS/NSM dashboards. They cover analysis of the Suricata alerts and events with per-protocol dashboards (Alerts, HTTP, Flow, SSH, TLS,DNS …). Some dashboards are also dedicated to more specific tasks – like the PRIVACY dashboard:
It shows privacy related information such as which page are leading to well know personal data providers such as Facebook, Twitter or Google.
Read the full release announcement for more details and screenshots.