Support #2063
closedCorrelate with Suricata
Description
Hello!
I am new with Suricata and I wanted to know if I can correlate events with Suricata. I am sorry if this is the wrong place to put this question, is there a forum where could I receive some help? I found only the user guide but not a developers guide, is it exist?
Thanks!
Updated by Jason Ish over 7 years ago
Alexis Fredes wrote:
Hello!
I am new with Suricata and I wanted to know if I can correlate events with Suricata. I am sorry if this is the wrong place to put this question, is there a forum where could I receive some help? I found only the user guide but not a developers guide, is it exist?
Thanks!
I'm going to say no. Suricata generates the events, but it would be left up to other tools (or the user) to correlate the events with other events. Perhaps other events generated by Suricata and/or events generated by other tools.
Updated by Alexis Fredes over 7 years ago
Jason Ish wrote:
Alexis Fredes wrote:
Hello!
I am new with Suricata and I wanted to know if I can correlate events with Suricata. I am sorry if this is the wrong place to put this question, is there a forum where could I receive some help? I found only the user guide but not a developers guide, is it exist?
Thanks!I'm going to say no. Suricata generates the events, but it would be left up to other tools (or the user) to correlate the events with other events. Perhaps other events generated by Suricata and/or events generated by other tools.
Ok, thank you! Anyone know if exists a developers guide of Suricata?
Updated by Jason Ish over 7 years ago
- Status changed from New to Closed
As for the developers guide, your best bet is to start here, https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Developers_Guide
Closing as the original topic was about correlation which is outside the scope of Suricata and may be a better topic for the mailing list.