Hi Team,
We have alerts generated from suricata in log files, but how can we process these logs to visualize and understand them properly ?
Thanks in Advance,
Kamal
Search for this phrase on Google: “suricata kibana dashboard”. You will find lots of example dashboard setups. The most popular platform seems to be an ELK stack (Elasticsearch, Logstack, Kibana) on Linux.
Here is a link to a dashboard offered by regular poster here on the forums (and a strong backer of Suricata): Stamus Labs - Kibana Dashboards.