Nethence Systems - Blue-teaming & SSL interception

UNIX / Linux | Distributed Storage | Cloud & Virtualization | Public Key Infrastructure | Blue-teaming | Contact

spot the brute force

SIEM

setup network & system IDS sensors
setup reverse-proxy custom logs (json)
setup log server
setup log collectors
setup alerts and anomaly detection
setup forward-proxy & eventually SSL-interception

Keywords

ElasticSearch / Opensearch, Fluent-Bit, Falco, Suricata

HOME | GUIDES | PLAYBOOKS | LECTURES | LAB | CONTACT | HTML | CSS
Licensed as MIT