simple-ids
| Crates.io | simple-ids |
| lib.rs | simple-ids |
| version | 0.3.0 |
| source | src |
| created_at | 2024-04-05 23:38:01.258429 |
| updated_at | 2024-05-09 22:29:23.80856 |
| description | Simple-IDS with Suricata and EveBox |
| homepage | https://evebox.org/simple-ids/ |
| repository | https://github.com/jasonish/simple-ids |
| max_upload_size | |
| id | 1197946 |
| size | 122,256 |
Jason Ish (jasonish)
documentation
README
Simple-IDS - Suricata/EveBox
Simple-IDS is a tool to easily run Suricata and EveBox Linux systems using Docker or Podman.
This program is considered experimental and many things may change, break, change name (I'm thinking simpleids is better), change repo, etc, etc... And I might even force push!
System Requirements
- An x86_64 or Aarch64 based Linux distribution with Docker or Podman. This includes most Linux distributions available today including Raspberry Pi OS (with 64 bit update applied).
- Root access.
Installation the Easy Way
mkdir ~/simple-ids
curl -sSf https://evebox.org/simple-ids.sh | sh
Or download directly from https://evebox.org/files/simple-ids/.
Once you have the program downloaded, run it:
./simple-ids
Under the configure menu select your network interface, then select "Start" from the main menu.
Building
If you just want to use Simple-IDS you can download a pre-compiled binary. The following is only for those who wish to compile Simple-IDS themselves.
For Host OS
cargo build --release
Static Targets
Static binaries for x86_64 and other platforms can be built with the
cross tool. To install cross:
cargo install cross
x86_64
cross build --release --target x86_64-unknown-linux-musl
Aarch64 (Raspberry Pi 64 bit)
cross build --release --target aarch64-unknown-linux-musl