Stamus Networks is proud to announce the availability of SELKS 1.0 stable release. SELKS is both Live and installable Network Security Management ISO based on Debian implementing and focusing on a complete and ready to use Suricata IDS/IPS ecosystem with its own graphic rule manager. Stamus Networks is a proud member of the Open Source community and SELKS is released under GPLv3 license.
You can download SELKS from SELKS main page.
SELKS is comprised of the following major components:
- S - Suricata IDPS
- E - Elasticsearch
- L - Logstash
- K - Kibana
- S - Scirius
It offers proven, powerful, innovative and scalable open source multi-threading technologies in a bundle.
SELKS 1.0 comes with 10 pre-installed Kibana IDS/NSM dashboards. They cover analysis of the Suricata alerts and events with per-protocol dashboards (Alerts, HTTP, Flow, SSH, TLS,DNS ...). Some dashboards are also dedicated to more specific tasks - like the PRIVACY dashboard:
It shows privacy related information such as which page are leading to well know personal data providers such as Facebook, Twitter or Google.
SELKS provides Scirius - a rules management interface for Suricata. Scirius has been developed by Stamus Networks to provide interaction with Kibana and Elasticsearch. It displays for example statistics on rules and links to existing Kibana dashboards:
Scirius provides up-to-date signatures via EmergingThreats Open (or PRO ) ruleset and SSL abuse.ch signatures
Scirius can be upgraded via standard Debian method (apt-get upgrade
). Stamus Networks is also determined to provide the latest stable Debian kernel release for SELKS. Upgrade to the latest stable kernel is easy via the package system. For example, it is possible for the user running the installed version to upgrade the kernel to the latest 3.14 version:
Scirius 1.0rc1 can upgrade to the 1.0 version by running apt-get dist-upgrade
The list of provided Kibana dashboards will be augmented in the future and this will be done seamlessly via the Debian packaging system and Kibana autodiscovery:
We really hope you will enjoy SELKS an enterprise-grade IDS and Network Security Monitoring system in 30 seconds.
Follow us on Twitter, Google+ and Github
Lets talk about SELKS...