Blog Entries

28. 06. 2023 Andrea Mariani Asset Management, NetEye, Unified Monitoring

GLPI Remote Inventory – Part 2 (Windows)

In GLPI Remote Inventory – Part 1 I described how to perform a remote inventory of Linux machines. Here in Part 2 I’ll describe instead how to perform a remote inventory on Windows machines using the WinRM (Windows Remote Management) protocol through an HTTPS listener. In order to create and use an HTTPS Listener on…

Read More
28. 06. 2023 Attilio Broglio Icinga Web 2, NetEye

Add Host Custom Variables to the Service Overview

Custom Variables are widely used in the NetEye 4 (Icinga) monitoring system in order to tag/add information to a host/service. In order to speed up setting these variables, users use the inheritance mechanism to inherit them from parent objects (i.e. hosts). This feature is very useful, but sometimes it can create some doubt about what…

Read More
27. 06. 2023 Davide Sbetti Bug Fixes, NetEye

Bug Fixes for NetEye 4.30

We fixed an issue where the check of the upgrade prerequisites was failing in case no prerequisites were found. Updated packages For NetEye 4.30 we updated the following packages:

Read More
26. 06. 2023 Andrea Mariani Asset Management, NetEye, Unified Monitoring

GLPI Remote Inventory – Part 1 (Linux)

Since NetEye version 4.29, the GLPI module has been upgraded to version 10. With this update GLPI introduced a new feature, making it possible to perform agentless inventories. Given the wide interest regarding this new feature from many of our customers, I decided to describe the steps necessary to be able to configure, link, and…

Read More
23. 06. 2023 Giuseppe Di Garbo Icinga Web 2, NetEye

Scheduling Downtime on Linux Environments

In one of my previous posts I mentioned the importance of downtime scheduling and shared an interesting example of a PowerShell script for managing downtime in Windows environments. Recently a customer asked me how to manage downtime with a similar solution, but for several hundred Linux servers monitored under NetEye. The reason is very simple:…

Read More
23. 06. 2023 Massimo Giaimo Blue Team, SEC4U

SOC vs. MDR: Understanding the Key Differences for Comprehensive Cybersecurity

Introduction In today’s increasingly complex cybersecurity landscape, it is crucial for organizations to adopt effective solutions to protect their data and digital assets from ever-evolving threats. Two commonly used services in this regard are SOC (Security Operations Center) and MDR (Managed Detection and Response). While both aim to ensure cybersecurity, there are important differences that…

Read More
22. 06. 2023 Damiano Chini Bug Fixes, NetEye

Bug Fixes for NetEye 4.30

We fixed several deprecations in the NetEye SIEM module, which allow NetEye installations to be compliant with the directives of Elastic Stack and to be prepared for future upgrade of the Elastic Stack. Updated packages For NetEye 4.30 we updated the following packages:

Read More
20. 06. 2023 Emil Fazzi Bug Fixes, NetEye

Bug Fixes for NetEye 4.30

We fixed several bugs regarding the NetEye first installation on a cluster. It is now possible to successfully run the neteye_secure_install without worrying about possible problems and interruptions. In addition, we fixed the permissions of some configuration files. Updated packages For NetEye 4.30 we updated the following packages:

Read More
19. 06. 2023 Fabrizio Dovesi Atlassian, Development, Service Management

👀 The AI is coming! The AI is coming!

A brief presentation of the brand new Atlassian Intelligence features and their potential in real use case scenarios. We don’t need Chicken Little to tell us that our lives will be increasingly influenced by the Artificial Intelligence revolution – AI is transforming how we work, enhancing teamwork, and significantly accelerating team achievements. Machine learning is…

Read More
13. 06. 2023 Mirko Ioris Blue Team, Red Team, SEC4U

The New .zip Domains do More Harm Than Good

In this article we’ll discuss the security concerns caused by Google’s introduction of .zip domains. First things first, let’s understand what a domain is and how it’s structured. What is a domain? A domain is a text string that allows a user to access the specified web site once typed into a browser. This string…

Read More
13. 06. 2023 Beatrice Dall'Omo Red Team, SEC4U

What We Know about the MOVEit Transfer 0-day

0-day vulnerabilities are predicted to grow more and more, posing new threats for the cybersecurity. It’s hard to predict them and when their exploit occurs, since developers and vendors are unaware of the flaw until they are actually exploited. Hence, there is no ready patch available for a 0-day vulnerability. MOVEit Transfer 0-day On May…

Read More
12. 06. 2023 Mattia Codato NetEye

Speeding up NetEye Updates with an RPM Mirror

When it comes to upgrading and updating NetEye, many users face a common challenge: the time required for downloading the new package versions. This process can be influenced by connection speed, the number of nodes to update, and sometimes even the number of NetEye systems to manage simultaneously. Fortunately, NetEye 4.30 introduces an effective solution:…

Read More
11. 06. 2023 Massimo Giaimo SEC4U

HackInBo – talk “pompompurin & co. – stories of seizures!”

On Friday 9 June 2023 I had the opportunity to participate as a speaker at the HackInBo Business event, one of the most important conferences on cyber security in Italy. During the talk I presented, I talked about the history of RaidForum, BreachForum and ExposedForum and the Genesis and Solomon marketplaces, recounting the seizures actions…

Read More
09. 06. 2023 Giuseppe Di Garbo ITOA, NetEye

Monitoring, Collection of Metrics and Dashboard of the NetEye Database

As you all know NetEye uses MariaDB as its database. With the nep-monitoring-core module of the NetEye Extension Packs (NEP), the following aspects of MariaDB are monitored: These checks are performed with a default time interval (check_interval) of 180s. To have real time control of many aspects of the MariaDB database operation, I suggest installing…

Read More
09. 06. 2023 Francesco Pavanello Exposure Assessment, SEC4U

Exposure Assessment: The Best Way to Easily Discover a Target’s Infrastructure

Overview of discovering hostnames and IP addresses using OSINT techniques.

Read More