In GLPI Remote Inventory – Part 1 I described how to perform a remote inventory of Linux machines. Here in Part 2 I’ll describe instead how to perform a remote inventory on Windows machines using the WinRM (Windows Remote Management) protocol through an HTTPS listener. In order to create and use an HTTPS Listener on…
Read MoreCustom Variables are widely used in the NetEye 4 (Icinga) monitoring system in order to tag/add information to a host/service. In order to speed up setting these variables, users use the inheritance mechanism to inherit them from parent objects (i.e. hosts). This feature is very useful, but sometimes it can create some doubt about what…
Read MoreWe fixed an issue where the check of the upgrade prerequisites was failing in case no prerequisites were found. Updated packages For NetEye 4.30 we updated the following packages:
Read MoreSince NetEye version 4.29, the GLPI module has been upgraded to version 10. With this update GLPI introduced a new feature, making it possible to perform agentless inventories. Given the wide interest regarding this new feature from many of our customers, I decided to describe the steps necessary to be able to configure, link, and…
Read MoreIn one of my previous posts I mentioned the importance of downtime scheduling and shared an interesting example of a PowerShell script for managing downtime in Windows environments. Recently a customer asked me how to manage downtime with a similar solution, but for several hundred Linux servers monitored under NetEye. The reason is very simple:…
Read MoreIntroduction In today’s increasingly complex cybersecurity landscape, it is crucial for organizations to adopt effective solutions to protect their data and digital assets from ever-evolving threats. Two commonly used services in this regard are SOC (Security Operations Center) and MDR (Managed Detection and Response). While both aim to ensure cybersecurity, there are important differences that…
Read MoreWe fixed several deprecations in the NetEye SIEM module, which allow NetEye installations to be compliant with the directives of Elastic Stack and to be prepared for future upgrade of the Elastic Stack. Updated packages For NetEye 4.30 we updated the following packages:
Read MoreWe fixed several bugs regarding the NetEye first installation on a cluster. It is now possible to successfully run the neteye_secure_install without worrying about possible problems and interruptions. In addition, we fixed the permissions of some configuration files. Updated packages For NetEye 4.30 we updated the following packages:
Read MoreA brief presentation of the brand new Atlassian Intelligence features and their potential in real use case scenarios. We don’t need Chicken Little to tell us that our lives will be increasingly influenced by the Artificial Intelligence revolution – AI is transforming how we work, enhancing teamwork, and significantly accelerating team achievements. Machine learning is…
Read MoreIn this article we’ll discuss the security concerns caused by Google’s introduction of .zip domains. First things first, let’s understand what a domain is and how it’s structured. What is a domain? A domain is a text string that allows a user to access the specified web site once typed into a browser. This string…
Read More0-day vulnerabilities are predicted to grow more and more, posing new threats for the cybersecurity. It’s hard to predict them and when their exploit occurs, since developers and vendors are unaware of the flaw until they are actually exploited. Hence, there is no ready patch available for a 0-day vulnerability. MOVEit Transfer 0-day On May…
Read MoreWhen it comes to upgrading and updating NetEye, many users face a common challenge: the time required for downloading the new package versions. This process can be influenced by connection speed, the number of nodes to update, and sometimes even the number of NetEye systems to manage simultaneously. Fortunately, NetEye 4.30 introduces an effective solution:…
Read More
On Friday 9 June 2023 I had the opportunity to participate as a speaker at the HackInBo Business event, one of the most important conferences on cyber security in Italy. During the talk I presented, I talked about the history of RaidForum, BreachForum and ExposedForum and the Genesis and Solomon marketplaces, recounting the seizures actions…
Read MoreAs you all know NetEye uses MariaDB as its database. With the nep-monitoring-core module of the NetEye Extension Packs (NEP), the following aspects of MariaDB are monitored: These checks are performed with a default time interval (check_interval) of 180s. To have real time control of many aspects of the MariaDB database operation, I suggest installing…
Read MoreOverview of discovering hostnames and IP addresses using OSINT techniques.
Read More