softwareguideswar roomaboutgo-home
Latest Configuration Guides
Platform Title
Red Hat Enterprise Linux 6.5 Snort Intrusion Detection System w/ Barnyard2 and PostgreSQL Support
February 9, 2014
Red Hat Enterprise Linux 6.4 Apache 2 Web Server w/ PHP5, OpenSSL, Suhosin and PostgreSQL, MySQL, IBM DB2 and/or Oracle Databases
May 24, 2013
IBM AIX 7.1 Setting Up TCP/IP, SSH and a GNU C / C++ Development Environment on AIX
January 9, 2012
Slackware Linux 13.37 IP Traffic Logger/Capture w/ Daemonlogger
May 9, 2011
Media and Research Requests
For journalists of all media, please use my PGP key for e-mail communications. Most requests I receive are for validating claims of major security events or vulnerabilities.

About one out of every five events I examine turn out to be fully or partially true. Our little community is increasingly becoming filled with rotten apples.

There is also an assumption of anonymity on my part, with exceptions only in very specific and authorized situations.

For research discoveries and disclosure, I already have a trusted list of journalists. For individuals and groups looking to include me in their efforts, please communicate using my PGP key listed above. Do your due dilligence first. I get a lot of requests and vetting what is legitimate gets annoying.
Splunk|  Blog

APP WALKTHROUGH: Writing a custom search command

20 August 2014 - One of the best ways to learn is by example.  If you want to build your own Splunk app, one of the best things you can do is dissect other apps. In the below youtube video, I slowly go through a simple but useful app that adds a single search command: timewrap. I go line-by-line, file-by-file, exp…

Splunk, Big Data and Healthcare Analytics in the Federal Government – Part 1

20 August 2014 - There have been three interesting events that have occurred recently in the area of healthcare analytics that deserve our attention: The passage through the US House and Senate of the Veterans Access to Care through Choice, Accountability, and Transparency Act; The development of a government IDIQ…

Is Big Data IT’s gift to the CEO?

13 August 2014 - At the beginning of June, I was at the Gartner CIO & IT Executive Summit in Berlin. It was an interesting event to attend in terms of the advice given to the CIOs at the event, how to deal with the “digital industrial revolution” and how to support the CEO’s top business priorities.  …

Risk Analysis With Enterprise Security 3.1

12 August 2014 -     The Risk Analysis Framework was introduced as a new feature in Splunk App for Enterprise Security 3.1, and provides users with the ability to utilize a risk scoring system for assigning varying levels of risk to a multitude of different assets and identities.     In the context of the Risk…

Streaming a new class of data into Splunk – Introducing the Splunk App for Stream

8 August 2014 - Last year in December, we announced the acquisition of Cloudmeter – a company with technology that captures data directly from the network traffic – a rapidly growing source of big data. Today, I’m stoked to announce the general availability of the Splunk App for Stream v6.0, which stems from…

Snort  |  Blog

Snort Subscriber Rule Set Update for 08/21/2014

21 August 2014 - Just released:Snort Subscriber Rule Set Update for 08/21/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 21 new rules and made modifications to 11 additional rules. There were no changes made to the snort.conf in this release. Talos woul…

Snort Subscriber Rule Set Purchases

20 August 2014 - Since the rollout of the new site, we've received a ton of comments, and I'd like to thank everyone for their feedback (positive and negative!) on behalf of the Open Source and Web Teams here in Talos and've been noticing a very small mistake that some people are making, and I wanted to…

Snort Installation Guide for Debian 7.6 has been posted!

20 August 2014 - Thanks to Jason Weir of our Snort Community who contributed this document, a set up guide for Snort on Debian 7.6.The guide has been published (along with our many other great guides!) in our Snort Setup Documentation section on!Be sure and check it out!Thanks Jason!

Snort Subscriber Rule Set Update for 08/19/2014, Shared Object Ruleset Re-categorization

19 August 2014 - Just released:Snort Subscriber Rule Set Update for 08/19/2014We welcome the introduction of the newest rule release from Talos. In this release we introduced 18 new rules and made modifications to 255 additional rules. There were category additions made to the snort.conf in this release. &…

Snort Subscriber Ruleset: Re-categorization of the Shared Object Rules

18 August 2014 - In 2012, the VRT (now Talos) performed a massive restructuring of the plaintext ruleset from the old category structure to a new category structure.  Since then we've received overwhelmingly positive feedback about them, so we will continue the effort by moving the Shared Object Rules into a si…

© 2014 Procyon Labs / Randal T. Rioux