[Bro] Web GUI for Bro?
Patrick Kelley
pkelley at hyperionavenue.com
Sat Jan 21 05:22:23 PST 2017
You might consider using an ELK stack for it for an open-source solution.
If your traffic is light, there is a free version of Splunk out there.
Adjust your filebeat yaml file to pickup the Bro logs.
/usr/local/bro/logs/current/*.log
https://www.digitalocean.com/community/tutorials/how-to-install-elasticsearc
h-logstash-and-kibana-elk-stack-on-ubuntu-14-04
Packetsled makes a solid commercial solution built on Bro.
Patrick Kelley, CISSP
Hyperion Avenue Labs
(770) 881-6538
The limit to which you have accepted being comfortable is the limit to which
you have grown. Accept new challenges as an opportunity to enrich yourself
and not as a point of potential failure.
From: <bro-bounces at bro.org> on behalf of project722 <project722 at gmail.com>
Date: Saturday, January 21, 2017 at 6:54 AM
To: <bro at bro.org>
Subject: [Bro] Web GUI for Bro?
Got Bro 2.4.1 working on a RHEL 6 system. Can anyone provide suggestions on
what I should use as a web GUI for bro? What is the best options out there?
NOTE - my version of Bro was compiled from source.
_______________________________________________ Bro mailing list
bro at bro-ids.org http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20170121/4b3d7222/attachment.html
More information about the Bro
mailing list