Security Onion's Avatar

Security Onion

@securityonion.bsky.social

By defenders. For defenders. Peel back the layers of your network and make your adversaries cry. https://www.securityonion.com

571 Followers  |  4 Following  |  72 Posts  |  Joined: 19.11.2024  |  1.7197

Latest posts by securityonion.bsky.social on Bluesky

Security Onion Pro: Onion AI Assistant
YouTube video by Security Onion Security Onion Pro: Onion AI Assistant

Check out our latest video!

Security Onion Pro: Onion AI Assistant
youtu.be/M0xGbuKxBig

02.02.2026 20:52 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1
Preview
Security Onion Essentials 2026 - YouTube Security Onion Essentials by Matt Gracie, updated for 2026 using 2.4.190 and 2.4.200.

We've updated our popular Security Onion Essentials video series!

Peel back the layers and make your adversaries cry!

www.youtube.com/playlist?lis...

27.01.2026 18:35 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 2
Preview
Security Onion 2.4.201 now available with Suricata and Zeek Updates! Last month, we released Security Onion 2.4.200: https://blog.securityonion.net/2025/12/security-onion-24200-now-available-with.html This wee...

Security Onion 2.4.201 now available with Suricata and Zeek Updates!

blog.securityonion.net/2026/01/secu...

16.01.2026 17:03 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Introduction to Security Onion 2.4
YouTube video by Security Onion Introduction to Security Onion 2.4

Check out the latest version of one of our most popular videos and see how Security Onion can help you peel back the layers and make your adversaries cry!

Introduction to Security Onion 2.4

youtu.be/NovJe01Ynow

06.01.2026 15:03 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 1
Post image

Our popular "Security Onion Fundamentals" class will be running Tuesday April 28, 2026 through May 1, 2026 in Alpharetta GA.

Use the following code before January 31, 2026 to get 10% off!

earlybird

For more info and to register:
securityonionapr2026.eventbrite.com

19.12.2025 15:54 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Security Onion 2.4.200 now available with Major Improvements for our Onion AI Assistant! Security Onion 2.4.200 is now available and includes several new features, updated components, and many quality of life improvements!Β  For S...

Security Onion 2.4.200 now available with major improvements for our popular Onion AI Assistant!

blog.securityonion.net/2025/12/secu...

16.12.2025 16:44 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 0    πŸ“Œ 2
Video thumbnail

Security Onion 2.4.190 now available including Onion AI Assistant!

Introducing the all-new Onion AI, an advanced LLM-based security analyst assistant, built directly into the Security Onion console.

Designed BY defenders FOR defenders!

27.10.2025 14:49 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 1
Post image

Security Onion 2.4.180 now available including new features, updated components, and quality of life improvements!

blog.securityonion.net/2025/09/secu...

17.09.2025 21:02 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image Post image Post image Post image

🚨 Security Onion 2.4.170 now available including JA4, more SOC dashboards, and updated components! 🚨

πŸ”Let's find more hackers! πŸ”

If you like Security Onion, please like and share to help spread the word!

blog.securityonion.net/2025/08/secu...

12.08.2025 14:55 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1
Preview
Security Onion 2.4.160 now available including Playbooks, Guided Analysis, MCP Server, and more! Security Onion 2.4.160 is now available and includes Playbooks and Guided Analysis to help you more quickly triage and respond to alerts! Se...

For more information, please see the blog post!

blog.securityonion.net/2025/06/secu...

25.06.2025 18:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

This leverages Playbooks to show you plays associated with the alert. These plays include questions which help guide your investigation. Each question has an associated query and the results of that query will be automatically displayed to help you answer the question.

25.06.2025 18:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

Security Onion 2.4.160 now available including Playbooks, Guided Analysis, MCP Server, and more!

Have you ever had an alert and were unsure of what to do next? In this release, when you expand an alert you'll see a new tab called Guided Analysis.

25.06.2025 18:34 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0
Sneak Peek: Security Onion Playbooks
YouTube video by Security Onion Sneak Peek: Security Onion Playbooks

We've got a new AI-powered Playbooks feature coming in Security Onion 2.4.160 that will turbocharge your analysis and incident response!

www.youtube.com/watch?v=SLGR...

18.06.2025 13:28 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1
Security Onion Pro Notifications
YouTube video by Security Onion Security Onion Pro Notifications

Check out our latest video, covering the Notifications feature in Security Onion Pro. Send your alerts directly to another platform, like email, Slack, or Jira!

www.youtube.com/watch?v=quy8...

12.06.2025 17:12 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1
Preview
Security Onion 2.4.150: Celebrating Mother's Day with MoM (Manager of Managers) Yesterday was Mother's Day and we are very thankful for our mothers! Today, we are releasing Security Onion 2.4.150 which includes a new Pro...

Today, we are releasing Security Onion 2.4.150 which includes a new Pro feature called MoM (Manager of Managers).

If you have multiple Security Onion deployments, check out this new feature that will allow you to manage them from a single manager!

blog.securityonion.net/2025/05/secu...

12.05.2025 17:14 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Tattoo of an onion with an arrow through it and a banner beneath that says MOM

Tattoo of an onion with an arrow through it and a banner beneath that says MOM

πŸ§…β™₯️Security Onion 2.4.150: Celebrating Mother's Day with MoM (Manager of Managers) πŸ§…β™₯️

Yesterday was Mother's Day and we are very thankful for our mothers!

12.05.2025 17:13 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 1    πŸ“Œ 1
Peeling Back the Network Layers with Doug Burks | S3 E2
YouTube video by Simply Cyber - Gerald Auger, PhD Peeling Back the Network Layers with Doug Burks | S3 E2

Thanks to Simply Cyber for having me on the podcast to talk about @securityonion.bsky.social !

Peeling Back the Network Layers with Doug Burks | S3 E2

www.youtube.com/watch?v=FNB6...

25.04.2025 14:56 β€” πŸ‘ 1    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Elasticsearch β€” Security Onion Documentation 2.4 documentation

There's also lots of good information in the Elasticsearch section of our documentation:

docs.securityonion.net/en/2.4/elast...

23.04.2025 12:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Index Lifecycle Management in Security Onion
YouTube video by Security Onion Index Lifecycle Management in Security Onion

Need more information on index lifecycle management? Good news, there's a primer on our Youtube channel!

www.youtube.com/watch?v=Y6HV...

23.04.2025 12:29 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Upcoming Change to Elasticsearch Index Management for Multi-Node Deployments Elasticsearch indices are managed by both the so-elasticsearch-indices-delete utility and Index Lifecycle Management (ILM). so-elasticsearch...

Upcoming change to Elasticsearch index management in Security Onion -- read this, especially if you're running a distributed, multinode deployment.

blog.securityonion.net/2025/04/upco...

23.04.2025 12:27 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 1    πŸ“Œ 1
Index Lifecycle Management in Security Onion
YouTube video by Security Onion Index Lifecycle Management in Security Onion

Index Lifecycle Management in Security Onion

www.youtube.com/watch?v=Y6HV...

17.04.2025 14:08 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 1

Security Onion is BY defenders FOR defenders!

If you like Security Onion, please scroll to the very top of this thread and LIKE and REPOST the first post of the thread to help spread the word!

THANKS!

25.03.2025 13:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Security Onion 2.4.140 now available including Suricata 7.0.9, Zeek 7.0.6, and much more! Security Onion 2.4.140 is now availableΒ including Suricata 7.0.9, Zeek 7.0.6, and much more! Component Updates The main focus of this releas...

There are many more fixes included in this release!

For more information, please see the full blog post at:

blog.securityonion.net/2025/03/secu...

25.03.2025 13:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

This release also adds a new feature to SOC Config that allows you to move certain configuration entries up or down. This includes things like SOC Dashboard queries, SOC Hunt queries, and SOC Actions:

25.03.2025 13:59 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 2    πŸ“Œ 0
Post image

Zeek 7.0.6 includes some bug fixes:

github.com/zeek/zeek/re...

25.03.2025 13:58 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

The main focus of this release is upgrading Suricata and Zeek.

Suricata 7.0.9 includes some security fixes:

suricata.io/2025/03/18/s...

25.03.2025 13:58 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image Post image Post image Post image

Security Onion 2.4.140 now available including Suricata 7.0.9, Zeek 7.0.6, and much more!

For more details, please see the thread 🧡and the link below!

25.03.2025 13:58 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Preview
Early Bird Discount for upcoming Security Onion Detection Engineering and Analysis training class Security Onion Detection Engineering and Analysis In-Depth Tuesday, July 22, 2025 through Friday, July 25, 2025 in Columbia MD Use the follo...

We've just announced a Detection Engineering and Analysis course, coming up this July in Columbia, MD. Register now for an early bird discount!

blog.securityonion.net/2025/03/earl...

20.03.2025 13:42 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 1
Preview
Quick Malware Analysis: REMCOS RAT pcap from 2025-03-10 Thanks to Brad Duncan for sharing this pcap from 2025-03-10 on his malware traffic analysis site! Due to issues with Google flagging a warni...

Quick Malware Analysis: REMCOS RAT pcap from 2025-03-10

blog.securityonion.net/2025/03/quic...

18.03.2025 18:18 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

If you like Security Onion, please scroll to the top of this thread and LIKE and SHARE with your network to help spread the word!

Thanks!

11.03.2025 17:49 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@securityonion is following 4 prominent accounts