-
I will be on the move for the next few months and I am attempting to setup a very simple lab. I simply want to log and analyze some basic traffic in and out of my laptop. My thoughts are to setup a sec onion VM and wither import wireshark pcaps or use sec onions native tools to pcap. Specs With my laptop only having 2 cores I figured I would run a script at night to visit some websites so it doesn't bog me down during the day while working. I have read through some documentation and I have no clue which mode is best. Some say eval, some say import, etc. Also the network configuration is odd. I follow the setups and I keep getting "invalid credentials" when trying to access SOC. My linux experience is pretty minimal and its safe to say I have very little idea what I am doing. |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 2 replies
-
"My linux experience is pretty minimal and its safe to say I have very little idea what I am doing." Under these circumstances, I'd recommend getting a new laptop for your workstation and use the old one to explore SO. Don't hesitate to just re-install after borking it multiple times. At least that way the learning curve impacts productivity less. ;-) |
Beta Was this translation helpful? Give feedback.
-
The simplest option would be to follow the steps at https://docs.securityonion.net/en/2.3/first-time-users.html to perform an IMPORT installation. |
Beta Was this translation helpful? Give feedback.
The simplest option would be to follow the steps at https://docs.securityonion.net/en/2.3/first-time-users.html to perform an IMPORT installation.