_Brian_Jackson_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale#)
![Trump Tells Cook to Stop Building iPhones in India and Build in the U.S. Instead [Video]](https://www.iclarified.com/images/news/97329/97329/97329-640.jpg)
![[The AI Show Episode 147]: OpenAI Abandons For-Profit Plan, AI College Cheating Epidemic, Apple Says AI Will Replace Search Engines & HubSpot’s AI-First Scorecard](https://www.marketingaiinstitute.com/hubfs/ep%20147%20cover.png)
![How to Enable Remote Access on Windows 10 [Allow RDP]](https://bigdataanalyticsnews.com/wp-content/uploads/2025/05/remote-access-windows.jpg)
Ping! Pop! Pow! Real-Time Security with Suricata, StackStorm & Slack.
Hey dev.to community! I was recently learning a few SecOps topics and was trying things out with the tool StackStorm (it's basically a ITTT tool for devops) that helps in event-driven automation. So then I thought of why not combine it with the good old Suricata tool and hence this blog... ;) TL;DR: What We’re Building We’ll wire up Suricata (our network IDS) to StackStorm (our event-driven automation engine), so that whenever Suricata spots suspicious traffic, StackStorm picks it up and shoots an alert into Slack. No more manually tailing logs, your chat app becomes your security ops dashboard! So enough talking and let's start doing! Why is this cool? Coz I find it.
Hey dev.to community!
I was recently learning a few SecOps topics and was trying things out with the tool StackStorm (it's basically a ITTT tool for devops) that helps in event-driven automation. So then I thought of why not combine it with the good old Suricata tool and hence this blog... ;)
TL;DR: What We’re Building
We’ll wire up Suricata (our network IDS) to StackStorm (our event-driven automation engine), so that whenever Suricata spots suspicious traffic, StackStorm picks it up and shoots an alert into Slack. No more manually tailing logs, your chat app becomes your security ops dashboard!
So enough talking and let's start doing!
Why is this cool?
Coz I find it.
