In this tutorial, I will talk about the following side menu items: Overview Alerts Dashboards Hunt Cases PCAP Grid Downloads Administration Non-menu item: SO-Import-PCAP Security Onion does provide free updates by using the soup command, and I will be demonstrating on how to perform the update. If you receive a…

In Part 1, I have installed Security Onion on a Virtual Machine. Now I will go over the tools that is provided with Security Onion and this will brief introduction. I will provide resources at the bottom of the page if you wish to learn more about it. …

Having a home lab network is necessary for any IT professional from Full Stack Developers to Cyber Security Engineers. Today, I will go over my current network setup in a Virtual Machine in VirtualBox. Here are some reasons why building a home lab network is a good idea: Isolated Environment…

securityonionsolutions.com describes Security Onion as, “Security Onion is a free and open Linux distribution for threat hunting, enterprise security monitoring, and log management. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes! Security Onion includes a native web interface with built-in…

Kali Linux defines Burp Suite as “Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application’s attack surface, through to finding and exploiting security vulnerabilities. …

As Intel471 defines SpiderFoot as, “SpiderFoot is a reconnaissance tool that automatically queries over 100 public data sources (OSINT) to gather intelligence on IP addresses, domain names, e-mail addresses, names and more. You simply specify the target you want to investigate, pick which modules to enable and then SpiderFoot will…

There are an array of penetration testing tools to attempt to exploit previously discovered vulnerabilities. Some of these tools are used during reconnaissance to determine the area of weakness in the systems while other tools were used to actively try to exploit the vulnerabilities as an attacker would. Rapid 7…

The Wifite tool was created to attack multiple WEP and WPA encrypted networks at the same time. This tool is customizable to be automated with only needing a few arguments and can be trusted to run without supervision and can be automated with only a few arguments. Wifite aims its…