Security Onion Set Up Part 4: Tuning
Once data starts flowing through the sniffing interfaces you are going to be presented with a lot of false positives. It’s essential to reduce the number of false positives because the identification of real indicators can become next to impossible and your hardware will thank you. When I fired up Security Onion on Ubuntu 16.04... Continue reading Security Onion Set Up Part 4: Tuning