What methods and tools to use for Pfsense Security Monitoring & Analysis?
-
What methods and tools to use for Pfsense Security Monitoring & Analysis?
Looking to take it to the next level….
Here is a video I ran across discussing basic entry level network defense with Security Onion.
Youtube VideoWonder how easy it would be to install the same tools or at less the most important ones within a custom Kali Linux build? http://www.kali.org/
Are there better solutions and methods available that would be more productive/better?
Please Post the methods, tools and technics you utilize.
-
I vulnerability test my LAN/WAN with Tenable's Nessus.
-
Not specific to pfSense really, but Kali Linux does have plenty of tools built-in for scanning and testing such as OpenVAS. While not as accurate or detailed as Nessus, OpenVAS has similar functionality and is free, compared to $1500/yr for a Nessus feed subscription.
It all depends on what your budget is, which is the better fit.
The advantage of a distribution like Security Onion is that it's already put together and ready to use. Sure, you could take the same functions and build them into another Linux distro, but why reinvent the wheel? Why not just use both Security Onion and Kali in separate VMs?
Kali is designed with pen testing in mind, and its default setup/layout is geared toward that. Security Onion is designed for persistent monitoring/logging/etc. They both have their strengths, and trying to make one thing do both would probably end up with lackluster results.