#pcaps — Public Fediverse posts on home.social

K. Reid Wightman :verified: 🌻 :donor: :clippy: @[email protected] · 2025-05-09 · 13:23 UTC

My talk from the S4x25 conference is up! I learned a bunch of lessons over the years from writing IDS rules (some good, some bad). A few lessons learned are in the talk, along with links to a github repo that contains pcaps, rules, and explanations of said rules, so that you can follow along at home:

https://www.youtube.com/watch?v=LYDk-tkM3eM

#pcaps #suricata #snort

K. Reid Wightman :verified: 🌻 :donor: :clippy: @[email protected] · 2025-05-09 · 13:23 UTC

My talk from the S4x25 conference is up! I learned a bunch of lessons over the years from writing IDS rules (some good, some bad). A few lessons learned are in the talk, along with links to a github repo that contains pcaps, rules, and explanations of said rules, so that you can follow along at home:

https://www.youtube.com/watch?v=LYDk-tkM3eM

#pcaps #suricata #snort

K. Reid Wightman :verified: 🌻 :donor: :clippy: @[email protected] · 2025-05-09 · 13:23 UTC

My talk from the S4x25 conference is up! I learned a bunch of lessons over the years from writing IDS rules (some good, some bad). A few lessons learned are in the talk, along with links to a github repo that contains pcaps, rules, and explanations of said rules, so that you can follow along at home:

https://www.youtube.com/watch?v=LYDk-tkM3eM

#pcaps #suricata #snort

gary @[email protected] · 2024-08-27 · 21:45 UTC

installing arkime on kali is v easy just apt install arkime but of course there is another matter of configuring....#pcaps #af pkts #syn ack #formerly moloch

#pcaps #af #syn #formerly

Johannes Ullrich (maybe not a bot) @[email protected] · 2023-01-31 · 21:31 UTC

Ever wondered how big ICMP errors can get? Well.. I got an answer for you in today's Packet Tuesday! https://youtube.com/watch?v=z9jk8Bbf4_o… #packetlife #pcaps #icmp #inpcapswetrust #packets #sec503

#packetlife #pcaps #icmp #inpcapswetrust #packets #sec503