Security Onion Training

Actions and Detail Panel

Sales Ended

Date and time


Georgia Regents University Allgood Hall AH E150

2500 Walton Way

Augusta, GA 30904

View map

Refund policy


Please note that this is the first run of this new class and therefore it is highly discounted! Future runs of this class will not be so heavily discounted.

What is Security Onion?

Security Onion is a Linux distro for IDS (Intrusion Detection) and NSM (Network Security Monitoring). It's based on Ubuntu and contains Snort, Suricata, Bro, Sguil, Squert, Snorby, ELSA, Xplico, NetworkMiner, and many other security tools. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!

For more about Security Onion, please see:

What topics are covered in this class?

Analyst Interfaces
Basic Hunting
Advanced Hunting
Production Deployment
Case Study

What hardware will be required for the class?

Students will need a laptop that is capable of running a 64-bit VM with at least 2GB RAM allocated to the VM. (3GB RAM or more for the VM is highly recommended).

PLEASE NOTE! Just because your laptop has a 64-bit processor does NOT necessarily mean that you can run 64-bit VMs. Your 64-bit processor must support virtualization and virtualization must be enabled in the BIOS.

What do students need to do prior to class?

Students should ensure that their laptop is fully capable of running a 64-bit VM by downloading the Security Onion ISO image and verifying that it runs AND installs in their VM. Please see our Installation guide:

Which version of Security Onion will we be using?

We'll be using the new Security Onion 12.04.2 ISO image released on July 25:

What do students need to bring to class?

Students need to bring the following:

  • this Eventbrite ticket
  • laptop as described above
  • Security Onion 12.04.2 ISO image