Recently, we had to monitor an EKS cluster and several other resources using NetEye. AWS already provides solid dashboards out of the box, but log analysis is not as flexible as in Elasticsearch, and costs can easily grow out of control. Our goals were: AWS CloudWatch is a monitoring and observability service that collects logs,…
Read MoreA pentest is only as valuable as the report that comes out of it. You can find critical vulnerabilities, chain exploits creatively, and demonstrate full infrastructure compromise, but if your report is unclear, overly technical, or poorly structured, its impact will be limited. A strong pentesting report bridges the gap between technical discovery and business…
Read MoreA Rule Is More Than a Query In modern detection engineering, a rule is often misunderstood as just a query that triggers alerts. In reality, within Elastic Security, a detection rule is a structured, versioned, and lifecycle-managed object that goes far beyond simple query logic. Understanding this structure is essential for anyone operating in a…
Read MoreModel selection, infrastructure sizing, vertical fine-tuning and MCP server integration. All explained without the fluff. Why Run AI on Your Own Infrastructure? Let’s be honest: over the past two years, LLMs have evolved from a tool perceived as experimental and reserved for researchers into something companies use every day for concrete, practical tasks. And with…
Read MoreWe addressed the following issues in the Alyvix module UI: List of updated packages
Read MoreTL;DR The Challenge LinkedIn is my single source of truth for professional experience. Every new role, certification, or skill update goes there first. A person’s CV should reflect those changes automatically – not weeks later when he or she remembers to manually copy information across formats and through different portals. The idea was simple: build…
Read MoreIn this article I’d like to share my experience with Elastic certifications. Recently, I had the opportunity to take the Elastic Certified Engineer and Elastic Certified Observability Engineer exams and I’d like to describe my preparation, experience and finally share some useful tips for anyone else who wants to follow the same path. Overview of…
Read MoreBecause “it works on my machine” is not an observability strategy. How It Started As an observability engineer, my workflow when starting a new project is pretty consistent: find the OpenTelemetry SDK for the language or framework in use, understand its quirks and limitations, and build from there. So when I picked up a Flutter…
Read MoreError during GLPI inventory task execution We have fixed a bug related to the Asset Management module and in particular in the usage of the GLPI inventory plugin to gather the inventory. List of updated packages To solve the issue mentioned above, the following packages have been updated for NetEye 4.46:
Read MoreA scalable approach to detecting malicious domains using Threat Intelligence and Indicator Match Rules One of the most common techniques used in phishing and initial access campaigns is the creation of domains that closely resemble legitimate ones. Attackers exploit typosquatting, homograph attacks, and brand impersonation to deceive users and steal credentials. For a Security Operations…
Read MoreIntroduction Managing Elasticsearch effectively – especially as environments grow in size and complexity – can quickly become a challenging task. Performance tuning, identifying the true root cause behind slowdowns, and optimizing resource allocation often demand specialized expertise and a significant investment in time. In enterprise ecosystems, where observability underpins critical services and reliability expectations are…
Read MoreIn many Elastic deployments, the natural approach every time you encounter a server with different needs is to create a new Fleet policy. Each group seems to require its own small set of tweaks or additional integrations. But the more policies you create, the harder it becomes to maintain and scale your configuration. In reality…
Read MoreOnce upon a time, humanity passed down epic stories and religious texts by memory alone. Entire civilizations relied on oral tradition to preserve their most important knowledge. Fast‑forward a few thousand years, and some companies are still doing the same thing with their procedures and information: trusting that Bob from Accounting… would “just remember it.”…
Read MoreImportant: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.46 Summary The vulnerability is about a Stored XSS and an Authenticated SQL Injection. For details on how to apply this update, which…
Read MoreImportant: Lampo security update Type/Severity NetEye Product Security has rated this update as having a medium security impact. Topic An update for the lampod packages is now available for NetEye 4. Security Fix for NetEye 4.46 Summary The vulnerability is about sensitive information exposure due to improper error handling. For details on how to apply this update, which…
Read More