Security Onion 2.4.160 • OS.watch

Security Onion 2.4.160 is now available and includes Playbooks and Guided Analysis to help you more quickly triage and respond to alerts. In this release, when you expand an alert you'll see a new tab called Guided Analysis. This leverages Playbooks to show you plays associated with the alert. These plays include questions which help guide your investigation. Each question has an associated query and the results of that query will be automatically displayed to help you answer the question. This release includes a number of hand-written playbooks that are used at the detection engine (NIDS, Sigma, YARA) and category (e.g 'ET MALWARE') level. We have also used AI to generate individual Playbooks for all ETOPEN NIDS rules (58k). Official announcement Download Security Onion

Other releases

Number	Codename	Date
2.4.160		2025-06-25 00:00:00

Reviews

Add a review

Your name and email

Please provide a name.

Please provide a valid email.

Your review

Please provide a review.