EveBox

EveBox is a Suricata alert and event management tool for the Suricata IDS/NSM Engine.

It can be used against your existing ELK stack, or as a standalone Suricata event manager using its embedded SQLite database for small deployments, or Elasticsearch/Opensearch for larger deployments.