Security Onion 🧅​

@securityonion@infosec.exchange
2K Followers
0 Following
623 Posts

Peel back the layers of your network and make your adversaries cry!

Free platform for threat hunting, enterprise security monitoring, and log management.

Questions: http://securityonion.net/discuss

Websitehttps://securityonion.net
Bloghttps://blog.securityonion.net
Docshttps://securityonion.net/docs
YouTubehttps://securityonion.net/youtube
Traininghttps://securityonionsolutions.com/training
Applianceshttps://securityonionsolutions.com/hardware
Security Onion 🧅​5d ago

Quick Malware Analysis: NETSUPPORT RAT pcap from 2025-06-18

https://blog.securityonion.net/2025/07/quick-malware-analysis-netsupport-rat.html

Security Onion 🧅​6d ago
Security Onion 🧅​6d ago
We recently celebrated 16 years of the Security Onion project and today we celebrate 11 years of Security Onion Solutions as a company! Thanks to our customers and community for your support throughout the years! We've come a long way, but the best is yet to come!
Security Onion 🧅​6d ago
We recently celebrated 16 years of the Security Onion project and today we celebrate 11 years of Security Onion Solutions as a company! Thanks to our customers and community for your support throughout the years! We've come a long way, but the best is yet to come!
Security Onion 🧅​Jun 30

Quick Malware Analysis: Lumma Stealer pcap from 2025-06-26

https://blog.securityonion.net/2025/06/quick-malware-analysis-lumma-stealer.html

Security Onion 🧅​Jun 30

Security Onion Documentation printed book now updated for Security Onion 2.4.160!

https://blog.securityonion.net/2025/06/security-onion-documentation-printed.html

Security Onion 🧅​Jun 30

ICYMI last week we released Security Onion 2.4.160 now with more AI power!

https://blog.securityonion.net/2025/06/security-onion-24160-now-available.html

Security Onion 🧅​Jun 25
Security Onion 🧅​Jun 25

Security Onion 2.4.160 now available including Playbooks, Guided Analysis, MCP Server, and more!

https://blog.securityonion.net/2025/06/security-onion-24160-now-available.html

Show threadSecurity Onion 🧅​Jun 25

Shoutout to @chrissanders88 for his work on the Human-Centered Investigation Playbook standard!

https://chrissanders.org/2025/06/human-centered-playbooks/

https://chrissanders.org/hcip/Human-Centered%20Playbook%20Standard%20v1.0.pdf

Security Onion 🧅​Jun 25
Show threadChris Sanders 🔎 🧠Jun 25
Playbooks don't replace or restrict analysts; however, they can help them perform more thorough investigations. Creating and using them also serves as an excellent learning tool. I hope this standard and its adoption will help folks along that path. #SOC #DFIR
Security Onion 🧅​Jun 25
Show threadChris Sanders 🔎 🧠Jun 25
Analysts derive playbooks through inductive reasoning processes. The process is often as valuable as the result. We needed a way to express those cleanly and effectively, supporting analyst cognition.
×
Security Onion 🧅​Jun 30

Quick Malware Analysis: Lumma Stealer pcap from 2025-06-26

https://blog.securityonion.net/2025/06/quick-malware-analysis-lumma-stealer.html