Setting up Snorby in Security-Onion
This video has been created by IronGeek and it is originally available on his website.
I wanted to post it on the blog because setting up a Network Security Monitoring system with Security-Onion is rather easy compared with the days I had to deploy Sguil by hand. Doug Burks is doing a great job here:)
I have to say that I prefer using Sguil in a NSM system as Richard Bejtlich has explained many times, but Snorby may be useful for many people.
Here you can find Richard Bejtlich talking about NSM and Sguil.