slinkwatch
automatic maintenance of Suricata monitoring interfaces
Install
- All systems
-
curl cmd.cat/slinkwatch.sh
- Debian
-
apt-get install slinkwatch - Ubuntu
-
apt-get install slinkwatch - Kali Linux
-
apt-get install slinkwatch - Windows (WSL2)
-
sudo apt-get updatesudo apt-get install slinkwatch - Dockerfile
- dockerfile.run/slinkwatch
slinkwatch
automatic maintenance of Suricata monitoring interfaces
slinkwatch is the Suricata Link Watcher, a tool to dynamically maintain interface entries in Suricata's configuration file, depending on what network interfaces are connected. It is meant to ease deployment of identical sensor installations at many heterogenous sites, allowing to make full use of the sensor resources in the light of varying monitoring volume.