Hi,
I was thinking, is there a need for a tips and tricks category for free sharing of interesting suricata or network security monitoring related articles and resources?
I think this could certainly be useful. Maybe a âEcosystemâ category (for lack of a better name)?
1 Like
I think that would be useful, ive found things like this https://github.com/FrankHassanabad/suricata-sample-data that i was going to link to in a blog post but here is more suitable.
Iâm trying to get Suricata to generate large data sets from the CSE-CIC-IDS2018 dataset and was a looking for a place to write it up.
1 Like
Maybe something more generic? In the old bulletin board days, there was often a âTips and Tricksâ or âMiscâ category for tech-forums. But personally I donât care to much what we call it as long free sharing and discussion is possible 
Perhaps we should have a âstickyâ topic about public datasets that we can keep updated. Something like https://suricata.readthedocs.io/en/suricata-5.0.2/public-data-sets.html, but then more dynamic
1 Like
Agreed, i am interested in generating as many interesting data points as possible per stream or per alert so the âForensic-modeâ in dev is great. I will then run that over public pcap datasets to learn more about large scale nsm analysis. public datasets and related analysis notes would be great
Please donât let the lack of a category prevent you from making such posts. We do have the #uncategorized category which is a good catch all while we figure out what extra categories make sense.
Thanks!
1 Like
I think the best usage of discourse would be for the dynamic content. I would prefer to have more static infos/links etc. in the official documentation which we can link here as well.
2 Likes
I have many tricks and scripts to contribute. At the moment I will do it in Developers?
Perhaps in uncategorized? Will be easier to spot when we have a proper category for such tips.
2 Likes