How to Stop AUTO_INCREMENT From Reusing After Restart

Recycled IDs can break your caching.

#mysql #autoincrement #reuse #howto #ids #gotcha

https://www.youtube.com/watch?v=AMm1JExqDbU

От сигнатур к ML IDS: чему IDS Suricata может научить модель?

[Текст не для публикации: не нашел как Редакции прикрепить сообщение, эта статья написана в рамках Блога "Институт системного программирования им. В.П. Иванникова РАН"]

https://habr.com/ru/articles/1015132/

#IDS #Suricata #ML #dataset

#nextnews:

29ct Premium-Laden, #VW- #IDs mit #Steckdose, Aufladen in 5min, #Mazda- #Gate, Abzocke im #D_Netz

Stabile #EAuto- #Zulassungen im Februar, neue Zahlen zum Fahrzeugbestand und ein möglicher Technologiesprung bei Batterien: In den aktuellen nextnews geht es außerdem um die neue elektrische Mercedes V-Klasse, zahlreiche neue Funktionen für VWs ID-Modelle und Probleme mit der LFP-Batterie im Mazda 6e...

#nextmove
@nextmovevideos

https://m.youtube.com/watch?v=4GdDspMENXA

Investigation scenario:
We just received three notifications with alerts from #Suricata #IDS

1) GPL SMTP vrfy root, from unknown IP to our mailserver

Shortly after that, two more alerts appeared:

2) ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response; from the same unknown IP to Windows computer in our network
3) ET MALWARE Possible Metasploit Payload Common Construct Bind_API, again from the same unknown IP to the same Windows computer

What happened?
What to do? How to analyze network traffic and investigate those alerts?

We do not have any EDR or XDR installed on that Windows computer. Right now,we have only Suricata eve.json logs ingested to the #OpenObserve #SIEM

If you would like to see more, you are welcome to attend my @suricata webinar on March 11.
Register here: https://us02web.zoom.us/webinar/register/WN_I6BNbCU2SNG2fAOEiotPiQ

Hey Security folks - tell me about your rules and detections for OpenClaw - IDS, SIEM, other!

#OpenClaw #IDS

@da_667 i may have to break into the mountains and drink a cold one

make a paid version of suri with ndpi for opnsense - plus upsells - their licensing is good , somebody may already do this? either way good idea#hashcat #ntop products #ids #opnsense

#you can't run away from your problems #you can run away from your problems

Rulezet (The detection rule management) v1.4.0 released — Taxonomy, Precision, and Advanced Discovery

Version 1.4.0 is a milestone update that transforms how intelligence is categorized and retrieved within Rulezet. By placing Tags and Taxonomies at the heart of the ecosystem, this release empowers users with granular control over their data. From private custom tagging to a revolutionary filtering engine, v1.4.0 ensures that finding the right rule is no longer a search—it’s a precision operation.

On the administrative side, we’ve introduced robust tools for visibility control and system resilience, including a new backup architecture and CVE sanitization to maintain data integrity across the platform.

🔗 Online version https://rulezet.org/
  Release notes https://github.com/ngsoti/rulezet-core/releases/tag/v1.4.0
🔗 Source code https://github.com/ngsoti/rulezet-core

#nids #ids #opensource #opendata #cybersecurity #detection #soc

@circl

Indiana quietly bans trans residents from changing gender markers on IDs

https://fed.brid.gy/r/https://www.advocate.com/politics/indiana-gender-marker-change-ban