Recent Posts

How to Choose the Right EPP / EDR Solution

How to Choose the Right EPP / EDR Solution

Introduction Like most cybersecurity professionals, you’re looking for an EPP that protects against current and evolving threats, is easy to deploy and manage, and is ultimately invisible to end-users.  Today, there are dozens of these platforms available, and choosing the right one for your business is 

how-to, incident response, information security
-
by
-
0 Comments
Zeekurity Zen – Part III: How to Send Zeek Logs to Splunk

Zeekurity Zen – Part III: How to Send Zeek Logs to Splunk

This is part of the Zeekurity Zen Zeries on building a Zeek (formerly Bro) network sensor. Overview In our Zeek journey thus far, we’ve: Set up Zeek to monitor some network traffic. Used Zeek Package Manager to install packages. Now we’ll send our Zeek logs 

how-to, incident response, information security, network security monitoring
-
by
-
34 Comments
Zeekurity Zen – Part I: How to Install Zeek on Ubuntu

Zeekurity Zen – Part I: How to Install Zeek on Ubuntu

This is part of the Zeekurity Zen Zeries on building a Zeek (formerly Bro) network sensor. Overview This guide assumes you’ll be installing Zeek on Ubuntu 22.04 LTS.  However, the guide should work for any reasonably recent versions of Ubuntu. Kicking things off, we’ll optimize Ubuntu to 

cool tools, how-to, incident response, information security, network security monitoring
-
by
-
58 Comments

How To Build a SANS GIAC Index

One of the keys to passing SANS GIAC exams is to build a comprehensive index to quickly find information during the exam.  Building an index will also help you study as it forces you to thoroughly review the material.  The steps below detail how to 

certifications, how-to, information security
-
by
-
7 Comments
How to determine your Ring Doorbell Pro firmware version

How to determine your Ring Doorbell Pro firmware version

I have a love/hate relationship with my Ring Doorbell.  When I purchased it in 2016 it worked great for a year with minimal issues.  As it became more popular, I noticed the quality dropped with video freezes, black videos, and missed motion events.  This led 

firewall, how-to, miscellaneous
-
by
-
0 Comments
Palo Alto Firewall: macOS Updates NSURLErrorDomain error -1012

Palo Alto Firewall: macOS Updates NSURLErrorDomain error -1012

This is part of the Palo Posts how-to guides for getting the most from your Palo Alto firewall on a home or small business network. Overview About a month ago, I enabled decryption on my Palo Alto firewall and limited it only to traffic to 

firewall, how-to, information security
-
by
-
0 Comments
Eric’s Top 7 Ways To Get Ready For Security Awareness This Summer

Eric’s Top 7 Ways To Get Ready For Security Awareness This Summer

Once upon a time, I believed that security awareness trainings were simply boring computer-based training videos that compliance requirements forced upon companies.  You’d simply “next, next, next” your way through and learn nothing of value.  However, in my current role I am directly responsible for 

information security
-
by
-
0 Comments
Palo Alto Firewall: External Dynamic Lists

Palo Alto Firewall: External Dynamic Lists

This is part of the Palo Posts how-to guides for getting the most from your Palo Alto firewall on a home or small business network. Overview I recently attended Palo Alto’s annual Ignite conference for the first time.  It was a great experience for learning 

firewall, how-to, information security, network security monitoring
-
by
-
4 Comments