Security Event Monitoring

Splunk

Used to analyze data and logs produced by systems
Provide us with robust visualization and reporting tools

Forwarding Snort Logs to Splunk

We can forward snort logs to splunk to visualize them. We will use splunk universal forwarder tool installed on snort server

PreviousThreat Monitoring with Security Information & Event Management (SIEM)NextHost Based Intrusion Detection System (HIDS) - OSSEC

Last updated 1 year ago