
This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup a Suricata Port Mirrored Server

be sure to star and follow this project if you like it. By doing so it lets me know which of my works people enjoy the most so development can be prioritized


This TA takes suricata5 data from your port mirrored suricata server and makes it readable within Splunk