Blog Entries

12. 11. 2024 Gianluca Piccolo Bug Fixes

NetEye 4 – Security Advisory

Synopsis Important: GLPI security update Type/Severity Security Advisory: Critical Topic An update for the package glpi is now available for NetEye 4. NetEye Product Security has rated this update as having a security impact of Critical. Common Vulnerability Scoring System (CVSS) base scores provide additional guidance about a vulnerability and give a detailed severity rating….

Read More
08. 11. 2024 Luca Zeni Blue Team, SEC4U, Threat Intelligence

SATAYO And SOC: Exchanging Data For Better Insight

In this post, we’ll explore the synergy between a Cyber Threat Intelligence (CTI) platform and a traditional Security Operations Center (SOC) service. For those interested in the topic, I recommend reading my previous article, where I demonstrated a concrete example of integration between our SIEM and SATAYO, the CTI platform we use in our SOC….

Read More
08. 11. 2024 Reinhold Trocker Log Management, Log-SIEM

Configuring EnvironmentFile for Elastic Agents on NetEye Nodes

When deploying Elastic Agents, the method of installation can affect the configuration of the systemd service file. Specifically, .tgz deployments of Elastic Agents include the line EnvironmentFile=-/etc/sysconfig/elastic-agent in their systemd configuration (elastic-agent.service). However, Elastic Agents installed on NetEye nodes via RPM packages do not include this line in the EnvironmentFile by default. Adding the EnvironmentFile on NetEye Nodes To…

Read More
06. 11. 2024 Davide Sbetti AI, Log-SIEM, Machine Learning, NetEye

The New NetEye User Guide Search: From POC to Production

Hello everyone! As you may remember, a topic I like to discuss a lot on this blog is the Proof of Concept (POC) about how we could enhance search within our online NetEye User Guide. Well, we’re happy to share with you how we’ve further developed the POC, specifically the process outlined in the first…

Read More
05. 11. 2024 Emil Fazzi Bug Fixes, NetEye

Bug Fixes for NetEye 4.38

We’ve fixed an issue where the neteye satellite config send command would stop if no SSH connection was available or enabled for a satellite. Now, the command will skip those satellites, allowing configurations to continue for reachable ones, while manual configuration transfer can be addressed later. This enhances efficiency and streamlines your deployment process. We…

Read More
01. 11. 2024 Massimo Giaimo Threat Intelligence

Our Contribution to Mitre Att@ck

Many of you have probably already heard about the MITRE ATT&CK framework. This framework is an important point of reference at the international level and is used within thousands of projects, detection rules, platforms. The Adversarial Tactics, Techniques, and Common Knowledge is a guideline for classifying and describing cyberattacks and intrusions. It was created by…

Read More
31. 10. 2024 Charles Callaway Documentation

Explaining Your Content with Complex Animations, Part 1

Hello budget videographers and user guide writers! Have you ever looked on with envy at some of those fancy animations in online videos and wondered “How can I do that?” Well, I can’t solve all your problems, but I can give you some examples, pointers and resources to get you started. For your videos you…

Read More
30. 10. 2024 Oscar Zambotti Automation, Development, Documentation

The OpenAPI Tales: A New Dawn

When we talk about APIs, we developers are generally biased, and focus on how they’re implemented technically – how they work, how they integrate into larger systems – and we settle for that. But there’s a valuable part of API development that often gets overlooked: creating their descriptions. This practice tends to be undervalued, so…

Read More
30. 10. 2024 Rocco Pezzani Log-SIEM, NetEye

Elasticsearch Restart and Network Tuning

We all know that NetEye Upgrades are boring activities. Upgrading is important and useful because it brings you bug fixes and new features, but nonetheless it’s extremely expensive in terms of time. The most boring, tiring and lengthy part is when you restart NetEye Services; if you have the SIEM Module installed, the time spent…

Read More
29. 10. 2024 Marco Berlanda Front-end, Real User Experience, UI, UX

The Power of Micro-Interactions: Enhancing UX in Front-end Development

In front-end development, the small details can have a big impact. Micro-interactions (those subtle animations and feedback elements that respond to user actions) are powerful tools for creating solid, smooth and engaging experiences. In this article, we will explore why they’re so effective, how to design them purposefully, and how to implement them efficiently with…

Read More
29. 10. 2024 Gianluca Piccolo Icinga Web 2, NetEye, Unified Monitoring

How to Monitor the Reporting Scheduler

Automatically sending reports on a precise schedule is one of the great features of NetEye 4. It allows you to save a lot of time and effort when you need to periodically send reports to your customers. It doesn’t matter how many reports, how many customers, or how often, we’ve got you covered. But as…

Read More
29. 10. 2024 Alessandro Taufer Development, DevOps

Is Signing git Commits Really Useful?

Securing your codebase is a fundamental step in guaranteeing the integrity of your software: if the access to your git commits is compromised, so is your whole supply chain. That’s the reason why  almost every git hosting service has implemented a strong authentication system to protect their users from unauthorized access. The question naturally arises…

Read More
25. 10. 2024 Tobias Goller Log-SIEM

Enhancing Cybersecurity with Elastic Defend: A Technical Consultant’s Perspective

In today’s digital landscape, cybersecurity is paramount. As a technical consultant, I’ve seen firsthand how organizations struggle to keep up with evolving threats. One tool that’s consistently stood out in the fight against cyber threats is Elastic Defend. In this blog post, I’ll delve into what Elastic Defend is, its key features, and how it…

Read More
24. 10. 2024 Reinhold Trocker Log Management, Log-SIEM

Categories of Documents – Create More Namespaces within an Agent’s Environment

In the ever-evolving landscape of IT monitoring and management, the ability to efficiently handle multi-dimensional namespaces is crucial. Within NetEye, Log-SIEM (Elastic), provides a comprehensive solution for managing the single namespace dimension with the namespace of a data_stream. This blog post delves into the intricacies of multi-dimensional namespaces and how NetEye’s Log-SIEM solution simplifies their…

Read More
24. 10. 2024 Marco Berlanda Bug Fixes, NetEye

Bug Fixes for NetEye 4.38

We fixed a bug in Icingaweb2 module Geomap that prevented users from declustering pins, even when fully zoomed in. Now, pins that are clustered together can be separated and viewed clearly by clicking the cluster icon at max zoom level, enhancing the overall map usability. We updated the following packages:

Read More

Archive