Hi everyone! Today I’d like to share with you an investigation we undertook related to ingesting Open Telemetry data in Elasticsearch, while maintaining tenant segregation from start to end. The Scenario Let’s imagine we have multiple customers, where in this case “multiple” may be well in the order of hundreds, who would like to send…
Read MoreIf you have ever built a Progressive Web App (PWA), you already know how the story usually goes. You add a manifest, generate a service worker, tick the installability boxes, and suddenly the app can sit on a phone home screen or launch in its own window on desktop. Very nice. Very shiny. Teknologia! Then……
Read MoreI recently faced a challenge that many large organizations run into when scaling their use of Atlassian Confluence. I needed to create an automation that would automatically change the page status under specific conditions – for every page created or updated across more than 600 spaces. The Problem Out of the box, Confluence provides a…
Read MoreSNMP monitoring is the standard method for obtaining information and metrics from network devices. Typically, we focus on extracting data from a single interface to monitor its status, traffic, or errors. But in many cases, we’re only interested in getting an overview of the interfaces, or to avoid overloading our somewhat outdated devices, we limit…
Read MoreIn the ITOA module we fixed a bug that prevented the Performance Graphs to be shown in the Monitoring host and service page. List of updated packages
Read MoreIn recent days I came across an interesting case: inventorying a fleet of Cisco phones… without SNMP. The devices only exposed a web UI, so no classic polling was possible. The solution was simple: query the phones’ HTTP pages, extract useful information, and send it to GLPI. The Idea The approach is intentionally minimal: No…
Read MoreCreating a GitHub organization is easy. Creating a public one that is actually well-structured, secure, and maintainable over time… not so much. At the beginning, it feels like a simple task: create the org, push some repositories, maybe define a couple of teams, and you’re done. But as soon as things become public, the whole…
Read MoreThis article expands on the topic introduced in my earlier blog post Secure Access to Applications with Azure, which focused on securing access to an on-premises web application using Microsoft Entra Application Proxy. Global Secure Access is Microsoft’s unified framework for securing access to private resources, Microsoft 365 services, and internet destinations through identity-aware controls….
Read MorePractical lessons learned from real-world alert routing, automation, and integrations
Read MoreIn the last few months I’ve been delving ever deeper into the Atlassian Forge ecosystem, the serverless platform that allows you to develop apps integrated into Jira, Confluence and other Atlassian cloud products without having to deal with infrastructure, authentication or hosting. The goal? Creating my first Forge app from scratch and understanding its complete…
Read MoreRecently we had to monitor an EKS cluster and several other resources using NetEye. AWS already provides solid dashboards out of the box, but log analysis isn’t as flexible as in Elasticsearch, and costs can easily grow out of control. Our goals were to: AWS CloudWatch is a monitoring and observability service that collects logs,…
Read MoreA pentest is only as valuable as the report that comes out of it. You can find critical vulnerabilities, chain exploits creatively, and demonstrate full infrastructure compromise, but if your report is unclear, overly technical, or poorly structured, its impact will be limited. A strong pentesting report bridges the gap between technical discovery and business…
Read MoreA Rule Is More Than a Query In modern detection engineering, a rule is often misunderstood as just a query that triggers alerts. In reality, within Elastic Security, a detection rule is a structured, versioned, and lifecycle-managed object that goes far beyond simple query logic. Understanding this structure is essential for anyone operating in a…
Read MoreModel selection, infrastructure sizing, vertical fine-tuning and MCP server integration. All explained without the fluff. Why Run AI on Your Own Infrastructure? Let’s be honest: over the past two years, LLMs have evolved from a tool perceived as experimental and reserved for researchers into something companies use every day for concrete, practical tasks. And with…
Read MoreWe addressed the following issues in the Alyvix module UI: List of updated packages
Read More