truvis / splunk_ta_truvis_suricata5 Goto Github PK
View Code? Open in Web Editor NEWThis TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup a Suricata Port Mirrored Server