Blog Entries

31. 10. 2023 Valentina Da Rold Bug Fixes, NetEye

Bug Fixes for NetEye 4.32

We added an automatic procedure that correctly upgrades the DB schema for Icinga2. Updated packages For NetEye 4.32 we updated the following packages:

Read More
30. 10. 2023 Giuseppe Di Garbo Atlassian, NetEye

How to Monitor NetEye with OpsGenie Heartbeats

Have you ever thought about how to monitor your NetEye system or other critical applications in a network failure scenario? To manage this scenario, in some customer cases some solutions have been implemented using SMS notifications, thus relying on the support of the mobile network as a notification channel.But what happens when even the mobile…

Read More
30. 10. 2023 Mirko Ioris Blue Team, Red Team, SEC4U

Adding SOAR Features to the SOC – Part 1: Vulnerability Management

Security Orchestration, Automation and Response (SOAR) is a set of functionalities used by the SOC team to automate security activites, improve workflow management and share threat intelligence data. Security Operation Centres (SOCs) can leverage SOAR to gain in-depth knowledge of the threats they face, trigger automatic responses to security issues and achieve better efficiency. In this…

Read More
30. 10. 2023 Lorenzo Candeago DevOps

How to Fix OpenShift Console not Showing the Characters in Firefox

Recently when opening a console in the web-ui of OpenShift in Firefox, I saw the following: This doesn’t happen when opening the console using Chromium. In the Firefox debugger, we can see that we have the following error: The error is due to a strict Firefox privacy setting that prevents characters from being loaded. To…

Read More
30. 10. 2023 Lorenzo Candeago DevOps

LVM Disks on Azure for Dockerized Applications

As an example of a Logical Volume Manager ( LVM ) setup on Azure, let me show you a real-world use case. Say we want to run a Pulp 3 container to host an rpm repo on Azure. As the base image let’s choose Rocky Linux 9. The machine that we provision will have two…

Read More
27. 10. 2023 William Calliari Development

Taking RPITIT ― Rust’s Shiny New Feature ― for a Test Ride with Type-system-level Lambda Calculus.

With the upcoming Rust version 1.75.0, two important new features will be stabilized. These features go by the names return-position impl Trait in trait (RPITIT) and async fn in trait (AFIT).

Read More
26. 10. 2023 Luca Zeni Blue Team, SEC4U

From Chaos to Case: How SLAs Make Life Better!

One of the primary responsibilities of a Security Operation Center (SOC) is to effectively manage issues related to monitoring the security perimeter. This involves the meticulous analysis of alerts, the creation of subsequent cases, and if necessary, the escalation of incidents to the client through ticketing systems or, in some cases, the closure of incidents…

Read More
25. 10. 2023 Valentina Da Rold Bug Fixes, NetEye

Bug Fixes for NetEye 4.32

In the Tornado GUI, we fixed the behavior of the “Group Match IDX” input of the regex extractor. Updated packages For NetEye 4.32 we updated the following packages:

Read More
24. 10. 2023 Charles Callaway Documentation

Making Your Own Video Tutorials, Part 15: Using a Teleprompter

Have you (like me) been spending too much time memorizing a script so in the final video you look as natural as possible? Maybe it’s because the ideas behind each video keep becoming more and more complicated, but I’m sure my scripts are longer than they used to be. And for me, there’s a point…

Read More
24. 10. 2023 Valentina Da Rold Development, NetEye

The Configurator: Moving from a Monolithic to a Modular Approach in NetEye Upgrade

Over the last few months, I’ve had the chance to work on a number of issues that involved many NetEye modules. In all these situations, we had to face the same problem: how to release a new module version without impacting the automated NetEye upgrade procedure. Nothing new for us, but we’d like to improve…

Read More
19. 10. 2023 Reinhold Trocker Log Management, Log-SIEM

Integration of Elasticsearch Clients without Authentication and without TLS

Introduction Let’s say… you have a product that has some Elasticsearch output, which deals with parsing and indexes, and also comes with a nice dashboard, etc., and let’s suppose… you would like to use this built-in functionality. And let’s say… the product in question wants to connect to Elasticsearch in an unauthenticated manner over HTTP….

Read More
19. 10. 2023 Gianluca Piccolo Events

Team Building: Sailing at Lake Garda

Why Sailing? Sailing is the perfect team building event: it combines cooperation, responsibility and commitment, along with a great dose of fun! That’s why this summer we decided to head up to Lake Garda to take part in a sailing team building event. Program The day started early in the morning, our bus picked us…

Read More
18. 10. 2023 Tobias Goller Unified Monitoring

ntopng – Display Multiple Metrics in One Graph

After my last ntopng trainings, which I taught as an instructor, I noticed that many ntopng users were not familiar with the display of multiple time series charts overlapping in one graphic. Since I believe that this is one of the most important display options, I’ll use this blog post to show you how to…

Read More
16. 10. 2023 Mattia Codato Bug Fixes, NetEye

Bug Fixes for NetEye 4.32

We have fixed the following bugs in the Tornado GUI: Updated packages For NetEye 4.32 we updated the following packages:

Read More
12. 10. 2023 Reinhold Trocker Log Management, Log-SIEM

stunnel TCP keepalive Settings Preventing Firewall from Blocking Log Traffic

Infrastructure Scenario An image says more than 1000 words 😉 Basically, the log source continuously sends log messages encrypted via TLS to the NetEye server. TLS is handled by stunnel and then content is internally forwarded unencrypted to an Elastic Agent Integration “Custom TCP Logs” inside the NetEye server. Cause: Logs lost due to firewall…

Read More

Archive