Doug Burks edited this page Mar 24, 2015 · 1 revision

Internet Storm Center: Snort on VMWare ESXi:
https://isc.sans.edu/diary/Running+Snort+on+VMWare+ESXi/15899 https://isc.sans.edu/diary/Running+Snort+on+ESXi+using+the+Distributed+Switch/16391

Brett Cunningham (@jbc22) and Micah Kays (cczkays): Honeypot - Adventures with Security Onion
http://marryware.blogspot.com/2012/07/honeypot-adventures-with-security-onion.html

dfirn00b: Using Security Onion to Find ZeroAccess Trojan
http://dfirjournal.wordpress.com/2012/07/19/more-zeroaccess/

Richard Bejtlich: How to Break Into Security, Bejtlich Edition
http://krebsonsecurity.com/2012/07/how-to-break-into-security-bejtlich-edition/

Ashley Deuble: Using and Configuring Security Onion to detect and prevent Web Application Attacks
http://www.sans.org/reading_room/whitepapers/detection/rss/_33980

Brett Cunningham and Micah Kays: Honeypot monitoring with Security Onion
http://5x5sec.blogspot.com/2012/06/honeypot-design.html

Andy Ratcliff: Security Onion vs DVWA
http://infosecmatters.blogspot.com/2012/06/sql-command-injection-lab-part-1.html
http://infosecmatters.blogspot.com/2012/06/sql-command-injection-lab-part-2.html

Security Onion mentioned in Jon Schipp's presentation at AIDE 2012
http://www.irongeek.com/i.php?page=videos/aide2012/an-introduction-to-traffic-analysis-a-pragmatic-approach-jon-shipp

Entreprenur.com: Free Tools for Improving Online Security
http://www.entrepreneur.com/article/223572

Brad Shoop: Splunkin the Onion
http://eyeis.net/wp-content/uploads/2012/05/DC404-Splunkin-the-Onion.pdf

Brad Shoop's Splunk app for Security Onion
http://splunk-base.splunk.com/apps/45784/security-onion

Jason Wood: 2012 UTOSC - Peeling Back the Security Onion - Video
http://www.youtube.com/watch?v=KUnAJe8_ysw

Jason Wood: 2012 UTOSC - Peeling Back the Security Onion - Slides
http://tadaka.net/downloads/SecurityOnion-UTOS2012.pdf

Mark Hillick: Security Onion on a netbook
http://blog.markofu.com/2012/05/securityonion-on-netbook-with-port.html
Zero Slides @ IrissCon
http://blog.markofu.com/2012/11/zero-slides-irisscon.html
Peeling back your Network Layers with Security Onion
https://speakerdeck.com/markofu/peeling-back-your-network-layers-with-security-onion

Mark Hillick: HackEire
http://www.hackeire.net/2011/11/hackeire-2011-ramblings-part-1.html
http://www.hackeire.net/2011/12/hackeire-2011-ramblings-part-2.html

Packet Pushers Show 95 – Security Onion With Doug Burks -or- Why IDS Rules and IPS Drools
http://packetpushers.net/show-95-security-onion-with-doug-burks-or-why-ids-rules-and-ips-drools/

Brad Shoop: Clap…Be Amazed…Now Go Defend
http://eyeis.net/2012/03/clap-be-amazed-now-go-defend/

Ash: File Execution Vulnerability & Security Onion – Basics
http://security.crudtastic.com/?p=569

Andy Ratcliff: Installing Security Onion IDS/NSM on vSphere 5 with SPAN traffic from a Cisco switch
http://infosecmatters.blogspot.com/2012/04/installing-security-onion-idsnsm-on.html

Liam Randall
http://www.gigaco.com/tag/security-onion/

InfoSec Island Security Onion Intrusion Detection System Setup Tutorial
http://www.infosecisland.com/videos-view/19641-Security-Onion-Intrusion-Detection-System-Setup-Tutorial.html

Hakin9.org
http://hakin9.org/security-onion-exploiting-software-032012/

Stack Overflow
http://stackoverflow.com/tags/snort/info

PaulDotCom
http://pauldotcom.com/2012/01/security-onion---snorby-now-in.html

Network World
http://www.networkworld.com/community/blog/peeling-security-onion

Holistic InfoSec
http://holisticinfosec.org/toolsmith/pdf/may2011.pdf

Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.