samiux.github.io

CyberSecurity Ninjas 网络空间安全忍者

View on GitHub
Home Projects Articles Apophthegm About

Kale 羽衣甘蓝 - Intrusion Detection System 侦测入侵系统 (Port Mirroring)

DISCONTINUED - Deprecated

This project is discontinued. Please refer to “Rosemary” or “Garland” projects when necessary.

Main Components

Hardware Requirement

Features

License

Kale is released under GPLv3 and is developed by Samiux.

Change Log

Version 6.0.10.0 (Latest, Stable)

Released on Feb 18, 2023 (GMT +8)

Install

sudo -sH
cd /root
git clone https://github.com/samiux/kale
cd /root/kale
nano nsm.conf
chmod +x nsm_install
sudo ./nsm_install
sudo reboot

Usage

sudo tail -f /var/log/suricata/fast.log | grep wDrop

sudo tail -f /var/log/suricata/fast.log
sudo cat /var/log/suricata/fast.log | grep wDrop

sudo cat /var/log/suricata/fast.log

Deploy

                                                                            +------- WIFI AP
                                                                            |        (if any)
         (Incoming)             (Outgoing, WAN)           (LAN)             |
   Modem ----------- Croissants ---------------- Router -------- Switch ----+------- PCs
                          |                      (WIFI)             |       |
                          |                                         |       |
                          +-----------------------------------------+       +------- Kale (Port Mirroring)
                                         (Monitoring)

                                                                    +------- WIFI AP
                                                                    |
         (Incoming)            (Outgoing, Port #1)                  |
5G Modem ----------- Croissants ---------------- Switch ------------+------- PCs
WIFI Router (unused)      |                        |                |
                          |                        |                |
                          +------------------------+                +------- Kale (Port Mirroring)
                                 (Monitoring)

Home Projects Articles Apophthegm About