Time
3 hours 10 minutes
Difficulty
Beginner
CEU/CPE
3

Video Transcription

00:00
All right. So for the last part of abyss lesson, we will
00:05
quickly go over a couple of the tools that are
00:09
only accessible through the terminal.
00:11
Now, typically
00:14
on security onion. If you go into applications other, it'll show you
00:20
several of the man pages that air available for security onion terminal tools.
00:26
But since I installed this different desktop,
00:30
it is giving different options. So
00:35
I have our one installed on local host here that we can take a quick look through.
00:41
We have
00:43
other
00:44
and then all of the man pages that are available to us. So that means that all of these tools are installed.
00:52
So, for example, we have our chaos. Reader man Paige
00:57
should open up a terminal. Yeah,
01:00
So here we have our man paid or our manual for chaos. Reader chaos reader being ah, interesting tool that you can run a pea cap through
01:11
and it'll horse it all out and give you Ah,
01:15
nice. Each team male daki h h TML documents that you can
01:21
open up a new browser end,
01:23
go through
01:30
we have other things like drift net de sniff h peeing
01:37
and grab. So network grab
01:40
escapee. If you want to *** some packets you can use? KP
01:48
Sniff it, man. Paige s s seldom.
01:53
Then TCP dump has always ah,
01:57
good tool for replaying or capturing traffic
02:00
TCP flow.
02:04
It's good for
02:06
working with Net flows.
02:08
T shark. That's the terminal version of wire shark. So
02:13
there are some pretty interesting tools that air installed on security onion.
02:17
We, of course, can't go into all of them. I think that we'd be here for quite a while if we worked through each of these tools. But I, of course, encourage you to
02:29
go through them, learn, learn everything that you can and
02:34
see what works for you.
02:36
In this lesson, we covered how we convert you. The running service is on your security, Onion Instance. How to view tools that are accessible through your browser on a manager or VM and what tools are available in the terminal.
02:49
Thanks so much for watching In our next lesson, we will cover some off. The resource is that are available to make your life easier when working with security onion. See you then J's

Up Next

Security Onion

Security Onion is an open source Network Security Monitoring and log management Linux Distribution. In this course we will learn about the history, components, and architecture of the distro, and we will go over how to install and deploy single and multiple server architectures, as well as how to replay or sniff traffic.

Instructed By

Instructor Profile Image
Karl Hansen
Senior SOC Analyst
Instructor