PLABS
softwareguideswar roomaboutgo-home
Latest Configuration Guides
Platform Title
Date
Red Hat Enterprise Linux 6.5 Snort Intrusion Detection System w/ Barnyard2 and PostgreSQL Support
February 9, 2014
Red Hat Enterprise Linux 6.4 Apache 2 Web Server w/ PHP5, OpenSSL, Suhosin and PostgreSQL, MySQL, IBM DB2 and/or Oracle Databases
May 24, 2013
IBM AIX 7.1 Setting Up TCP/IP, SSH and a GNU C / C++ Development Environment on AIX
January 9, 2012
Slackware Linux 13.37 IP Traffic Logger/Capture w/ Daemonlogger
May 9, 2011
Media and Research Requests
For journalists of all media, please use my PGP key for e-mail communications. Most requests I receive are for validating claims of major security events or vulnerabilities.

About one out of every five events I examine turn out to be fully or partially true. Our little community is increasingly becoming filled with rotten apples.

There is also an assumption of anonymity on my part, with exceptions only in very specific and authorized situations.


For research discoveries and disclosure, I already have a trusted list of journalists. For individuals and groups looking to include me in their efforts, please communicate using my PGP key listed above. Do your due dilligence first. I get a lot of requests and vetting what is legitimate gets annoying.
Splunk|  Blog

Making Sense: Manufacturing, Splunk and Industrial Data

25 November 2014 - Recently, in the online publication Manufacturers Monthly, Denise Carson published a piece called “Harnessing Operational Intelligence”, and really made the case for using big-data and platforms like Splunk to deal with “rising costs and the tyranny of distance”. Denise explained that operat…

Preparing users for phishing attacks with Splunk

25 November 2014 - Why waste time and energy trying to crack passwords or hack through some obscure and complex vulnerability when there is a much easier way to breach a computer network? Want a break in? Just ask for an invitation. Phishing is probably the simplest way to get reliable, authentic access to a target ne…

Monitoring Network Traffic with Sysmon and Splunk

24 November 2014 - Every IT guy has a set of tools that they use every day. One of mine is sysinternals. It’s a set of Windows utilities made available by Microsoft that do a whole slew of things. You can install them with chocolatey (another in my toolset) or downloaded and unpacked from their website. If y…

Smart AnSwerS

24 November 2014 - Hello, and welcome to the debut of Smart AnSwerS, a weekly blog series featuring posts from Splunk Answers on trending issues, interesting use cases, and more! For the last couple of months, I’ve been reviewing incoming content on Answers and selecting high-value postings to summarize and ema…

Splunk App for SharePoint goes Open Source

22 November 2014 - For about the last year, I’ve been working on an update to the Splunk App for SharePoint. But it isn’t the one you would expect. I’ve been working to open source the app. At the end of the day the best person to write an IT Operations app for Splunk is the person who is intimate…

Snort  |  Blog

Snort Subscriber Rule Set Update for 11/24/2014, Regin Malware

24 November 2014 - Just released:Snort Subscriber Rule Set Update for 11/24/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 30 new rules and made modifications to 29 additional rules. There were no changes made to the snort.conf in this release. Talos woul…

Snort Subscriber Rule Set Update for 11/20/2014

20 November 2014 - Just released:Snort Subscriber Rule Set Update for 11/20/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 21 new rules and made modifications to 4 additional rules. There were no changes made to the snort.conf in this release. Talos would…

Snort Subscriber Rule Set Update for 11/18/2014

18 November 2014 - Just released:Snort Subscriber Rule Set Update for 11/18/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 29 new rules and made modifications to 23 additional rules. There were no changes made to the snort.conf in this release. Talos woul…

Snort Subscriber Rule Set Update for 11/13/2014

16 November 2014 - Just released:Snort Subscriber Rule Set Update for 11/13/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 27 new rules and made modifications to 3 additional rules. There were no changes made to the snort.conf in this release. Talos's rul…

Snort Subscriber Rule Set Update for 11/06/2014

12 November 2014 - Just released:Snort Subscriber Rule Set Update for 11/06/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 21 new rules and made modifications to 8 additional rules.There were no changes made to the snort.conf in this release.Talos wo…


© 2014 Procyon Labs / Randal T. Rioux