For more information, please see the blog post!

blog.securityonion.net/2025/06/secu...

This leverages Playbooks to show you plays associated with the alert. These plays include questions which help guide your investigation. Each question has an associated query and the results of that query will be automatically displayed to help you answer the question.

Today, we are releasing Security Onion 2.4.150 which includes a new Pro feature called MoM (Manager of Managers).

If you have multiple Security Onion deployments, check out this new feature that will allow you to manage them from a single manager!

blog.securityonion.net/2025/05/secu...

There's also lots of good information in the Elasticsearch section of our documentation:

docs.securityonion.net/en/2.4/elast...

Need more information on index lifecycle management? Good news, there's a primer on our Youtube channel!

www.youtube.com/watch?v=Y6HV...

Security Onion is BY defenders FOR defenders!

If you like Security Onion, please scroll to the very top of this thread and LIKE and REPOST the first post of the thread to help spread the word!

THANKS!

There are many more fixes included in this release!

For more information, please see the full blog post at:

blog.securityonion.net/2025/03/secu...

This release also adds a new feature to SOC Config that allows you to move certain configuration entries up or down. This includes things like SOC Dashboard queries, SOC Hunt queries, and SOC Actions:

Zeek 7.0.6 includes some bug fixes:

github.com/zeek/zeek/re...

The main focus of this release is upgrading Suricata and Zeek.

Suricata 7.0.9 includes some security fixes:

suricata.io/2025/03/18/s...

If you like Security Onion, please scroll to the top of this thread and LIKE and SHARE with your network to help spread the word!

Thanks!

For more information and a full screenshot tour, please see our blog post at:

blog.securityonion.net/2025/03/secu...