Goodmorning all,

I'm currently running an experiment with security onion.

I have setup a promiscuous port in my network on which I am monitoring traffic which I ingest in security onion.

Part of this setup is enriching the data with syslog traffic from the controller as well and I was wondering if someone else ran such an experiment as well.

Are there people that already created some dashboards in elastic/kibana purely for this purpose?