Malware Dropbear

Fellow infosec researchers o/

Are any of you running IDS's on your home setups, if yes what are you running?

#IDS #infosec #security

Apr 27, 2023 at 1:32amWeb
Show thread${jndi:blit32 💻Apr 27, 2023
@DiligentSentinal unfortunately I am not but I am very interested in what people are doing since I was researching this subject just a few hours ago.
Show threadMalware DropbearApr 27, 2023
@blit32 it’s an interesting topic, I have a spare z600 workstation just laying around so I am configuring that with all of my setup now.
Show threadMickael Rigonnaux Apr 27, 2023
@DiligentSentinal Personally, I have been using Wazuh for years and I am very happy with the product and the evolutions! I also used Suricata but it is much more complicated to use
Show threadMalware DropbearApr 27, 2023
@tzkuat I’ve not used Waxuh before, I’ll check it out
Show threadMickael Rigonnaux Apr 27, 2023
@DiligentSentinal it’s a fork of OSSEC (an HIDS), a free software with great community!
Show threadMalware DropbearApr 27, 2023
@tzkuat thinking of combining snort and ossec and tying the alert system to telegram or slack
Show threadIchinin   âœ…🎯🙄Apr 27, 2023
@DiligentSentinal Not currently running anything, but i've used Snort and Suricata earlier.
Show threadI Thought I Saw A 2 Apr 28, 2023
@DiligentSentinal I played around with #securityonion in the past. When I ran it inside my ISP router it never found anything interesting. When I ran it outside the ISP router it was a firehose of probes and other nonsense but still nothing overly interesting.