Security Onion 2.0 hit RC1 status today! 100% Open Source Network + Endpoint monitoring platform. Includes the option to install Kolide Fleet + Launcher, and pre-generates the Launcher/osquery install packages for you, so you can just download them from the platform and deploy to your endpoints. Lots of backend work has gone into it so that you can easily pivot from different types of logs for better context then live query the endpoint for further analysis. Let me know if you have any questions or feedback! https://twitter.com/securityonion/status/1285588421013049346