I am running a suricata siem with suricata,elasticsearch,kibana and filebeat. But there are few issues, while the dashboard is running it is fine but when I run a ddos attack using kali it stops working and shows alert once I stop the attack and after that it just stop displaying info until I clear out the eve.json file.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.