Name: Security Onion
Rating: 9.6 (7 reviews)
Author: Security Onion Solutions, LLC

Help Desk

Web and Video Conferencing

Customer Support

Beta Testing

Continuous Integration

Development

Alumni Management

Education

Business Intelligence (BI)

Collaboration

Contract Analysis

Demand Planning

Emissions Management

Knowledge Management

Online Notary

Payment Facilitation

Enterprise

Accounting

Travel Management

Finance and Accounting

Applicant Tracking

Corporate Learning Management

HR Management

HR Service Delivery

Payroll

Talent Intelligence

Talent Management

Workforce Analytics

Workforce Management

Human Resources

AIOps

API Design

App Development

Cloud Storage

Data Center Backup

Data Center Networking

Data Center Outsourcing (Canada)

Data Integration

Data Replication

Database-as-a-Service (DBaaS)

Enterprise Printing

Fraud Detection

Integration Platform as a Service (iPaaS)

Managed Detection and Response (MDR)

Mobile Data Security

Network Performance Monitoring

Secure Access Control

Service Virtualization

Value Stream Management

Information Technology

A/B Testing

Ad Serving & Retargeting

All-in-One Marketing

Content Management

Content Marketing

Creative Management

Ecommerce Personalization

Email Marketing

Market Research

Marketing Automation

Marketing Resource Management

Social Media Analytics

Social Media Management

Survey & Forms Building

Web Analytics

Marketing

Project Management

Professional Services

Customer Onboarding

Customer Relationship Management (CRM)

Point of Sale

Predictive Sales Analytics

Sales Consulting

Sales Dialer

Sales Incentive Compensation Management

Sales Training

Sales

Virtualization Security

Security

Financial Services CRM

Hospital Management

Medical Office EMR & EHR

Revenue Cycle Management (RCM)

Shipping

eDiscovery

Vertical-Specific

Find top rated software and services based on in-depth reviews from verified users. 400+ software categories including PaaS, NoSQL, BI, HR, and more.

Snort

Cisco

Palo Alto Networks Advanced Threat Prevention

Palo Alto Networks

Proofpoint Advanced Threat Protection

Proofpoint

SonicWall Capture Advanced Threat Protection (ATP)

SonicWall

Cisco Secure IPS

Trend Micro TippingPoint

Trend Micro

Cisco IPS Sensor (Discontinued)

Trellix Intrusion Prevention System

Trellix (FireEye + McAfee)

Amazon GuardDuty

Amazon AWS

Security Onion is a free and open source Linux distribution for threat hunting, enterprise security monitoring, and log management, developed by the company of the same name in Evans. Their products include both the Security Onion software and specialized hardware appliances that are built and tested to run Security Onion. The company also offers paid support and training services.

Essentials

Standard

Premium

AlienVault USM

CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents, hardware, scheduled scans, firewall exceptions or admin credentials.

Falcon Pro

Falcon Enterprise

Falcon Go (Small Business)

CrowdStrike Falcon

Security Onion

Intrusion Detection Systems (synonymous with Intrusion Prevention Systems, or IPS) are designed to protect networks, endpoints, and companies from more advanced cyberthreats and attacks. The systems aim to repel intruders or, failing that, reduce attacker dwell time and minimize the potential for damage and data loss.

Intrusion Detection

Doug Burks and Philip Plantamura demo what you can do with IDS data with a demonstration of Security Onion.
Full episode can be seen at https://twit.tv/twiet/225

Security Onion Preview

Peeling Back the Layers of the Network with Security Onion

CompTIA Security+ Lab #17 - IDS Alert Analysis using SGUIL via Security Onion | SY0-601

Security Onion  - SIMGA  - Atomic Red Team

This is a recorded demonstration of investigation using Windows endpoint logs in Security Onion that I used as part of my talk at BSides Cleveland 2022. For the conference talk itself, please see:

https://www.youtube.com/watch?v=gnzuA3UWYKg

BSides Cleveland 2022: Security Onion demo video

How to send external Logstash logs to Security Onion using SSL

Likelihood to Recommend

Security Onion Solutions, LLC

SolarWinds Loggly

SolarWinds ipMonitor

SolarWinds Log Analyzer (LA)

Security Onion 2022-09-16 15:33:33

TrustRadius is a technology and business research firm based in Austin, Texas. The company is known as a review platform for verified B2B technology and software reviews through a proprietary algorithm and human verification.

TrustRadius

Home

Intrusion Detection Systems

Security Onion has been the best platform we found to use for alerting, hunting, and tracking of various security vulnerabilities. It is OpenSource and supported by a community of like minded users. The GUI is straight forward and easy to work with. There is even the ability to use an appliance from Security Onion, though we have not had a need to use it yet.

Case Creation
Detectioin Engineering
Dashboards

Makes Alert Triage easier to handle
Analysis of threats simple

SolarWinds Loggly and SolarWinds Log Analyzer (LA)

SolarWinds Loggly, SolarWinds Log Analyzer (LA), SolarWinds ipMonitor

Security Onion

Overview

What is Security Onion?