You can import pcaps using so-import-pcap: docs.securityonion.net/en/2.3/so-import-pcap.html We have lots of examples of importing recent malware pcaps on our blog: blog.securityonion.net/search/label/quick%20malware%20analysis If you have further questions or problems, please start a new discussion at: securityonion.net/discuss Thanks!
Awesome video Doug! Great stuff.
Thanks, glad you like it!
Thank you Security onion, I am waiting new thing from you
You're welcome!
Hey what about if you want to import a pcap for analysis. How Can I import a pcap to be analyzed in this interface?
You can import pcaps using so-import-pcap:
docs.securityonion.net/en/2.3/so-import-pcap.html
We have lots of examples of importing recent malware pcaps on our blog:
blog.securityonion.net/search/label/quick%20malware%20analysis
If you have further questions or problems, please start a new discussion at:
securityonion.net/discuss
Thanks!