Bro-IDS Logstash Parsing
I have spent the past several days working with Bro-IDS and Logstash parsing and wanted to share this with anyone else who may be doing the same and needs so...
Recent posts
IP Reputation Lookups with Logstash
I had a great question yesterday about how to configure Logstash to integrate IP reputation lookups within Logstash and Kibana without having to copy and pas...
Suricata IDS/IPS VMXNET3
As part of a bigger post coming soon I have been using Suricata IDS and my Logstash server has been getting hammered and unable to keep up (running a single ...
Graylog2 v0.90 Install Script
In the past I have been updating the auto install scripts for Graylog2 and updating the original post each time. However here on out I will be creating new p...
IPTables Cluster Script
I have been working on some interesting virtualized networking setups (More on this in another post soon) and needed a way to configure IPTables rules on all...