We purchased a Corelight AP3000 recently to run Zeek and Suricata and send these logs to our SIEM. This was my first time running Suricata in my environment and I quickly learned that Suricata is … Suricata Rule Updates on CorelightRead more
IDS
Modern Honey Network & Raspberry Pi
I attended a talk years ago where Duke University was using a robust network of sensors managed via Modern Honey Network. It motivated me to reuse my old Raspberry Pi as a sensor, alerting on … Modern Honey Network & Raspberry PiRead more