[Bro] - recommended DB for Bro logs
ivan ninichuck
ipninichuck at gmail.com
Sun Dec 9 07:38:03 PST 2018
Elastic Search is fantastic. Very good displaying of information, and the
newest version has alerts, some graph analysis and basic machine learning.
Let me know if you need help getting started.
On Sun, Dec 9, 2018, 7:20 AM william de ping <bill.de.ping at gmail.com wrote:
> Hi all,
>
> I would appreciate recommendations for a DB server that is most suited for
> ingesting and digesting Bro logs.
>
> I know of some use cases involving splunk and the Splunk Bro app, but
> price and performance wise (10GBps incoming traffic) it does not seem to be
> the best solution out there.
>
> Does anyone have any experience with Bro and ElasticSearch | Redis |
> MySQL ?
>
> I am looking into different solutions and would appreciate your thoughts.
>
> Thanks in advance
> B
>
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20181209/cdb90c57/attachment.html
More information about the Bro
mailing list