Operations | Monitoring | ITSM | DevOps | Cloud

Latest Blogs

Let's talk about STIX, TAXII, and threat intelligence

In terms of collaboration, Structured Threat Information eXpression (STIX) and Trusted Automated eXchange of Indicator Information (TAXII) represent a revolution in the security industry. These protocols transformed the field of threat intelligence from a fragmented collection of information to a unified standard for information sharing. In this blog, I will examine this transition and how it came about.

Monitor webpages for changes with VisualPing

Frequent online shoppers, travel enthusiasts, parents seeking admissions for their wards, or the average online newsreader are all constantly plugged on to the Internet hoping to see the information they want updated on the respective websites. The only thing they can do is keep refreshing webpages and waiting for a change. Don’t you think that’s a waste of time and energy? You could instead be doing something more productive.

From PowerShell to p@W3RH311 - Detecting and Preventing PowerShell Attacks

In part one I provided a high level overview of PowerShell and the potential risk it poses to networks. Of course we can only mitigate some PowerShell attacks if we have a trace, so going forward I am assuming that you followed part 1 of this series and enabled: Module Logging, Script Block Logging, Security Process Tracking (4688/4689)

Rome Wasn't Built in a Day

At any given time, most cities have an ongoing infrastructure project that seems to take longer than necessary. Snarled traffic, endless lines of cars, and the ever present orange barrel. A sign has started appearing in those situations. It says "Rome wasn't built in a day. If it was, we would have hired those engineers." It’s clever way to remind people that progress requires patience. Similarly, great service provider businesses aren’t built overnight.

From PowerShell to P0W3rH3LL - Auditing PowerShell

Imagine someone getting the seemingly innocent ability to run a couple of commands on a machine on your network WITHOUT installing any new software, but those commands resulting in a reverse shell running on that same machine – giving the intruder a convenient outpost in your network. Now stretch your imagination even further and pretend that all of this happens without leaving any unusual traces in logs – leaving you completely in the dark.

Software Configuration Management: Patterns, Best Practices, and Tools for Agile and DevOps

Software configuration management (SCM) is a set of processes, policies, and tools that organize the development process. The goal of SCM is to improve the speed of and quality by catching errors early and enabling quick fixes when they occur. Understand how to define SCM and discuss how to accomplish it.

Retrace Platform Major Update: Alerts and Notifications

The goal of Retrace's platform update is to improve system performance and resolve some outstanding defects. We incorporated a tremendous amount of feedback in order to help Retrace users produce and maintain high quality software systems. Get more details on the changes to alerts and notifications.

Data Snapshot: How Meltdown & Spectre flaws are affecting businesses

In recent years, revelations of security holes in widely used IT hardware and software have put IT pros on edge. A few times a year, a huge cybersecurity announcement introduces chaos into the IT world, forcing network and systems administrators to scramble to secure their environments and deal with the fallout.