Open Information Security Foundation

11/19/2018

07:08 AM Suricata Support #2690 (Closed): Is ssl decrytion supported in suricata?

Can we use suricata to analyze https traffic with the server's private key and certification?
Or is there any tool c... Hao Han

04:25 AM Suricata Support #1996: Suricata worked in IDS mode ,Could detection the https attack?

Victor Julien wrote:
> Suricata does not decrypt https traffic. You will need a third party tool to decrypt it and h... Hao Han

11/05/2018

01:56 AM Suricata Support #2660: structing fast.log and store to elasticsearch

Victor Julien wrote:
> out of curiosity: why would you want this? The eve.alert records are trivial to pass to ES, w... Hao Han

11/02/2018

07:07 AM Suricata Feature #2661 (New): output the http-body-data to eve.json

I have two requirements:
1. We do not need to output all the request or response body. Instead, only those text rela... Hao Han

06:51 AM Suricata Support #2660 (Closed): structing fast.log and store to elasticsearch

As we all know that eve.json can be outputed as json to redis. Then logstash can be used to pull the structured data ... Hao Han