Skip to content

fortheswarm/sensor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
bro
bro
 
 
suricata
suricata
 
 
README.md
README.md
 
 

Repository files navigation

sensor

Dockerfiles for popular open source IDS software

included:

  • bro
  • suricata

coming soon:

  • snort

usage

attach this container to a running container with the --net=container:<container id> flag.

sink your logs to a sink container with --volumes-from=<sink container>.

don't forget to pass either --cap-add=NET_RAW --cap-add=NET_ADMIN or --privileged, or the sensor will not work!

example:

docker run --cap-add=NET_RAW --cap_add=NET_ADMIN -d --volumes-from=sink --net=container:<container to tap> strcrzy/sensor:bro

About

dockerfiles for popular open source IDS software

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages