-
Notifications
You must be signed in to change notification settings - Fork 2
Home
Several options exist to collect host and network metadata separately, and even a few that collect both. Proprietary and heavily commercialized (paid) systems are readily available in quantity. While commercial solutions are viable for some they should never be the end-all solution. By combining features from HELK and Security Onion with minimal changes to either platforms original capabilities (many of helk's capabilities are missing from this project at the moment but are being worked on) a more full featured full spectrum collection and analysis platform can be offered to the cyber security population.
This project aims to accomplish this objective by integrating the features of HELK into Security Onion. An associated project SO4HELK will be undertaken as well, to integrate Security Onion capabilities into existing HELK architectures.