Blog Entries

31. 12. 2022 Fabrizio Dovesi Service Management

Data-driven Models – the Ultimate Fighter against a Company’s Complexity 👊 – Use Case Part 2 of 2

Guidelines on Data-driven models for managing data complexity and designing robust systems that might be consider both a single-source-of-truth and a single-point-of-contact. Use case scenario about a real Managed Service Provider ITSM with Atlassian Cloud products As mentioned in my previous post (Part 1 of 2), data-driven models help companies in managing data complexity and…

Read More
31. 12. 2022 Charles Callaway Documentation

Making Your Own Video (Tutorials), Part 11: Recording Day

So you read the advice I wrote in parts 1-9, you think to yourself “Oh why not, I’ll try to make a video”, and you then plan everything out: where to film, what to say, how to dress, the equipment you need, etc. You’ll pick or reserve a room somewhere in your office building (we’re…

Read More
30. 12. 2022 Davide Gallo Contribution, NetEye, Service Management

Start Using systemd Timers instead of cron/anacron

systemd timers are a way to schedule tasks in Linux systems using the systemd initialization system. They provide finer granularity for scheduling tasks than the traditional crontab, and also ensure that the task will be executed when the system is running in the future, even if the expected execution time was missed due to the…

Read More
29. 12. 2022 Rocco Pezzani NetEye

Finding Subtle Changes in your NetEye 4 Monitoring during Critical Activities

Rules and standards are important. In a world based on collaboration, following a well defined behavior is key for avoiding errors based on some sort of misunderstanding. This is also true for the world of information technology: someone releases software that is incomplete by design, and then leaves the completion of it to the people…

Read More
28. 12. 2022 Giuseppe Di Garbo NetEye

Monitoring Automation in Director

Director is one of the most important modules in NetEye 4 because it’s used for managing, automating and deploying the configurations of all monitored objects. In all our projects we use automation in Director: through the Import and Synchronization rules we can automate many operations such as the import and synchronization of hosts, service checks,…

Read More
27. 12. 2022 Damiano Chini Development, Log Management, Log-SIEM, NetEye

Adding Settings to Beats Agents’ Templates Based on the Index Name

With the introduction of the Composable Index Templates in Elastic, we at NetEye had to redesign the way index settings and mappings are applied to the indices generated by El Proxy. In this post I’ll explain: The solution explained in the remainder of the post was designed for El Proxy, but it may apply also…

Read More
23. 12. 2022 Valentina Da Rold Development, ITOA, NetEye

Configuring ClickHouse as an Additional Data Source in Grafana

As mentioned in my colleague Mattia’s blog, NetEye 4.27 comes with a ClickHouse database pre-installed.If you follow that post, you will be able to customize NetEye in order to save data inside a ClickHouse database. Your data is now ready to be visualized on a dashboard, and you can accomplish this by configuring the ClickHouse…

Read More
22. 12. 2022 Andrea Mariani ITOA, NetEye

Exporting Grafana Graphs to CSV

Some time ago, a customer asked me if it was possible to export the data used by NetEye 4 Performance Graphs to CSV format. In particular, the performance graphs that are displayed within Icinga 2’s web interface currently have no option to export their data. After some research, I found that the only way to…

Read More
22. 12. 2022 Charles Callaway Documentation

Making Your Own Video (Tutorials), Part 11: Animation Redux

After my last post on the advantages and disadvantages of the animation style of video, I hope you did your homework! I certainly did, and you can see the results of my first animated video that conveys some basic information on the need for cybersecurity both in English and in Italian. Probably like you, I…

Read More
21. 12. 2022 Mirko Ioris Blue Team, SEC4U

Meet the SOC Weekly Reports, a New Way to Inform Customers

One of the most comprehensive services offered by Wuerth-Phoenix’s Cyber Security team is the Security Operation Center (SOC). An SOC is capable of monitoring an IT environment, scanning all messages sent within the internal network, and all operations performed on corporate devices. Through the use of detection rules, the SOC is able to identify anomalies…

Read More
21. 12. 2022 Damiano Chini Log Management, Log-SIEM, NetEye

How We Verify the Integrity of El Proxy Blockchains Altered by a Retention

El Proxy helps in compliance with GDPR regulations, which, besides the rest, imposes guarantees on the integrity of data and ensures that the data is kept for no longer than a predefined period of time. El Proxy ensures the integrity of the data by saving the data in El Proxy blockchains. The guarantee that data…

Read More
21. 12. 2022 Massimo Giaimo Blue Team, SEC4U

Protected: Some Insight into the Differences between AV and EDR

There is no excerpt because this is a protected post.

Read More
20. 12. 2022 Attilio Broglio NetEye

How to Parse HTML Email Messages with Tornado

Tornado is a CEP “Complex Event Processor” that receives reports of events from data sources such as monitoring and email, matches them against preconfigured rules, and executes the actions associated with those rules. Some vendors provide static notification systems that cannot be customized. For example, during one project we were faced with a tool that…

Read More
20. 12. 2022 Alessandro Valentini DevOps

One Year as a DevOps Engineer

The Beginning When I started my new role as a DevOps Engineer at the beginning of 2022, we had little experience in DevOps as a team. We tried several times to implement automation in order to simplify maintenance and reduce the amount of overall effort we invested in routine activities. However, since DevOps engineers are…

Read More
20. 12. 2022 Lorenzo Candeago Development, DevOps

A Simple and Portable Dockerfile for Working with Azure and Ansible

For our use case, we need to be able to deploy Azure machines using Ansible from developer’s laptops and from our own CI/CD infrastructure both on Jenkins and OpenShift. The easiest way to ship a working and easy-to-use environment for our use case is to create a Docker instance: we based our Docker on rockylinux…

Read More