SELKS is a free, open-source, and turn-key Suricata network intrusion detection/protection system (IDS/IPS), network security monitoring (NSM) and threat hunting implementation.
The live distribution is available as either a live and installable Debian-based ISO or via Docker compose on any Linux operating system.
SELKS is comprised of the following major components:
- S – Suricata – which is ready-to-use.
- E – Elasticsearch – data lake and search engine.
- L – Logstash – log injection.
- K – Kibana – custom dashboards and event exploration.
- S – Stamus Community Edition – Suricata ruleset management and Suricata threat hunting interface.
| Working state: | Active |
| Desktop: | Xfce |
| Init Software: | systemd |
| Package Management: | APT |
| Release Model: | Fixed |
| Platforms: | x86_64 |
| Home Page: | www.stamus-networks.com |
| Developer: | Stamus Networks |
| This article is part of our Big List of Active Linux Distros which is currently under development. |
What's a Linux distribution ("distro")? |
| A distro provides the user with a desktop environment, preloaded applications, and ways to update and maintain the system. Each distro makes different choices, deciding which open source projects to install and provides custom written programs. They can have different philosophies. Some distros are intended for desktop computers, some for servers without a graphical interface, and others for special uses. Because Linux is an open source operating system, combinations of software vary between Linux distros. |