Skip to content
Linux distro for intrusion detection, enterprise security monitoring, and log management
Branch: master
Clone or download

Latest commit

Fetching latest commit…
Cannot retrieve the latest commit at this time.


Type Name Latest commit message Commit time
Failed to load latest commit information.
.github Update ISSUE_TEMPLATE May 1, 2019
old promote to stable Mar 30, 2020
sigs update sigs and testing instructions for Mar 25, 2020 Update May 8, 2019
KEYS Create KEYS Mar 7, 2016 Update Jul 9, 2019 Update Oct 21, 2019 promote to stable Mar 30, 2020

Security Onion

Security Onion is a free and open source Linux distribution for intrusion detection, enterprise security monitoring, and log management. It includes Elasticsearch, Logstash, Kibana, Snort, Suricata, Bro, Wazuh, Sguil, Squert, NetworkMiner, and many other security tools. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!

For more information about Security Onion, please see our main website, blog, and docs.

This Repo

This repo contains the ISO image and tracks issues for Security Onion.

Want to download and verify the Security Onion ISO image?

Please proceed to the Verify_ISO page.

Looking for documentation?

Documentation Status

Need Help?

Please proceed to the Help page.

Have Questions?

Please send questions to the Security Onion mailing list.

Want to see what lies ahead for Security Onion?

Please proceed to the Projects page.

Looking for source code?

This repo stores no source code. You can get the source for any of our packages by doing the following at a terminal (replacing PACKAGE-NAME with the name of the package that you want the source for):

apt-get source PACKAGE-NAME

Some of our packages have their own Github repos at Security-Onion-Solutions.

Security Onion Solutions

Looking for training, professional services, or hardware appliances? Check out

You can’t perform that action at this time.