Is there some type of general Suricata rule for Elastic that will create a detection alert in Elastic SIEM everytime that the suricata rules goes off.
Related topics
Topic | Replies | Views | Activity | |
---|---|---|---|---|
Threat hunting with suricata, ElasticSecurity | 2 | 807 | June 14, 2021 | |
Issue with rules creation | 15 | 1851 | May 5, 2022 | |
Drilling into Suricata data | 5 | 2238 | August 8, 2019 | |
Elastic SIEM. Security rules doesn't work | 12 | 2158 | December 27, 2021 | |
What can Elastic SIEM be used for? | 1 | 1693 | November 4, 2022 |