Visualizing Events with Evebox

EveBox is an open source web-based Suricata event viewer for Elasticsearch. OPNids can forward DragonFly MLE or Suricata logs to Logstash for indexing in Elasticsearch.

A guide is available on the Evebox documentation site to enable integration between OPNids and EveBox -