i intalled the security onion app on splunk (splunk is running on windows).When i enter the security onion app inside splunk i have no results/ events (its empty).
i have tried to do an intrusion attack, but still have no results, what should i do ?
Also i have the reporting and management for OSSEC and it is also empty, i just installed it and trying to find a document about it or something to configure it in order to get results.
Thanks.
↧