This CloudFormation template will deploy an instance of Moloch full packet capture, enhanced with Suricata, listening on UDP port 4789 (VXLAN). You can create a VPC traffic mirroring target pointing at the ENI of this instance, create filters and mirroring sessions to monitor traffic from your EC2 instances using a web interface.
-
Notifications
You must be signed in to change notification settings - Fork 0
fj604/moloch-cfn
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Deploy Moloch in AWS using CloudFormation
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published