Hi all, Now that I have installed metron (single node installation on ubuntu machine), I want to do some initial testing on snort data. I have a few questions regarding this:
1- In how many configurations can I use snort with metron (for ex packet capture in sniffing mode etc)? 2- How can I change the rules in snort 3- Can I map the network using metron? 4- Is snort generated data stored somewhere? KIndly also give me some tutorial to follow for better understanding. Regards.
