SELKS, a product of Stamus Networks, is a Debian-based live distribution designed for network security management. It provides a complete and ready-to-use Suricata IDS/IPS ecosystem with its own graphic rule manager. The system also includes Kibana IDS/NSM dashboards (for visualising logs and other time-stamped data) a Scirius (a rules management interface for Suricata). SELKS is released under the GNU GPLv3 licence.
SELKS is both Live and installable Network Security Management ISO based on Debian implementing and focusing on a complete and ready to use Suricata IDS/IPS ecosystem with its own graphic rule manager. From start to analysis of IDS/IPS and NSM events in 30 sec. The name comes from its major components: Suricata Elasticsearch Logstash Kibana Scirius. After starting or installing SELKS, you get a running Suricata with IDPS within a NSM platform, Kibana to analyse alerts and events and Scirius to configure the Suricata ruleset. SELKS is released under GPLv3 license. Sources, README, issues tracker and wiki are hosted on GitHub. To ask any questions or get help you can use our mailing list. You can thus build your own SELKS ISO or just download the ready to use ISO’s below. SELKS exists in two flavors with and without desktop interface. SELKS with desktop download links: