Activeboard: Suricata IDS Attacks Overview
- Former user (Deleted)
- Borja Moro Moreno
Purpose
Suricata IDS Attacks Overview is the leading independent open source threat detection engine. By combining intrusion detection (IDS), intrusion prevention (IPS), network security monitoring (NSM), and PCAP processing, this Activeboard allows you to quickly identify, stop, and assess the most sophisticated attacks. You can use this Activeboard to monitor attacks and intrusion attempts, and provide drill-down capabilities on all collected data.
Prerequisites
To use this Activeboard, you must have the following data sources available on your domain:
ids.suricata.fastlearn more
Open Activeboard
Once you have installed the Activeboard, you can use the Open button at the top right of the card in Exchange to access it and see the different widgets populated with the relevant data. You can also access the Activeboard area via the Navigation pane.
Data loading takes too long?
Sometimes some widgets take time to upload the data, it is possible to speed up the process by creating aggregation tasks. Refer to the Aggregation tasks article to learn how to do it.
Use Activeboard
After installing and opening the Activeboard, you can use its widgets to visualize and monitor data. To do this, each widget offers a variety of customization and visualization options. Refer to Using widgets and Using inputs to know them all.