da_667 · @da_667
2310 followers · 757 posts · Server infosec.exchange
So, a couple of colleagues of mine are over in Athens, Greece for #Suricon
Suricon is a conference put on by the #OISF (they're the ones that made and maintain #Suricata).
I wanted to share some cool things I've heard about over there:
Stamus networks, producers of the #SELKS distribution and the #Scirius web interface for managing Suricata operations and alerts produced an open ruleset dedicated towards lateral movement on internal networks. Its a hard target to hit in general, so congratulations for trying to take it on, and not only that, making the rules open:
https://www.stamus-networks.com/blog/new-open-ruleset-for-detecting-lateral-movement-with-suricata
A co-worker of mind spied work by a researcher named satta, and a github repository aptly named awesome-suricata, featuring a variety of open community tools to help with the care and feeding of your sensor deployments:
https://github.com/satta/awesome-suricata
If youre interested , maybe join the suricata discord server for more information on the talks and whatnot that happened this week: https://discord.gg/t3rV2x7MrG
#suricon #OISF #suricata #selks #scirius
tXambe · @tXambe
1 followers · 323 posts · Server mastodon.social
RT @seguridadyredes@twitter.com
flow_id:"100708788952877"
#ALERT: ET EXPLOIT Possible OpenSSL HeartBleed Large HeartBeat Response (Server Init Vuln Client).
....
🐦🔗: https://twitter.com/seguridadyredes/status/1540422981733818372