-
For the "threshing" step, we need to define a normalized data model. This should be aligned with whatever MLSec already uses for ease of "baling" but does not necessarily need to be the same.
-
Hi,
the following rules are firing up on a debian wheezy system running OSSEC 2.8 from the alienvault repos:
```
OSSEC HIDS Notification.
2014 Jun 24 10:35:30
Received From: hostname->/var/log/mess…
ghost updated
10 years ago
-
With a git clone from 2d ago and install w easybutton,
$ curl -k -w "\n" -XGET 'https://localhost:443/ping?token=1234' -H "Accept: application/vnd.cif.v2+json"
{"timestamp":[1413212402,16993]}
$ sudo…
juju4 updated
9 years ago
-
This seems odd to me that when a database is connected, the search command ignores my type parameter:
```
msf > search type:auxiliary ssh
Matching Modules
================
Name …
-
I'm not 100% sure that we're capturing everything we need within our current 'Event'. Likewise, there's probably stuff in there we don't need.
-
Following the trail we get at least 3 incidents affecting different organizations and we should put a note in the actor.notes field that they were all the same actor. I have generated a GUID that we c…
-
A question about matching partial strings.
I used FindBar Tweak (FBT) to search for a company name on a web page.
I typed the company name as StringText. FBT highlighted all occurrences of that stri…
-
_From [wshie...@gmail.com](https://code.google.com/u/109710020580607401319/) on April 20, 2013 03:26:29_
What steps will reproduce the problem? 1. Run the following rule on FLOC-meeting.doc
rule APT…
-
http://news.nytco.com/2013/08/28/business/media/hacking-attack-is-suspected-on-times-web-site.html?smid=tw-nytimes
http://www.zdnet.com/hackers-had-melbourne-it-reseller-credentials-to-attack-nyt-twi…
-
I had Beef up and running for a while and now I get 500 Server error and I have no idea how to solve it. I have done update-beef and it does not work. (VERSION says 0.4.4.7-alpha)
INSTALL.txt VERSI…