-
Archives
- July 2023
- April 2023
- March 2023
- February 2023
- October 2022
- February 2022
- January 2022
- December 2021
- September 2021
- August 2021
- July 2021
- March 2021
- January 2020
- May 2018
- May 2017
- April 2017
- March 2016
- February 2016
- December 2015
- September 2015
- March 2015
- January 2015
- October 2014
- June 2014
- March 2014
- February 2014
- December 2013
- November 2013
- August 2013
- July 2013
- June 2013
- May 2013
- February 2013
- October 2012
- July 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- November 2011
- October 2011
- June 2011
- May 2011
- April 2011
- December 2010
- November 2010
-
Meta
Monthly Archives: January 2022
Elasticsearch in Docker: threat intelligence with filebeat
Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip
Posted in Computer, Docker, Linux, Networking, Security
Tagged docker, elastic, filebeat, ioc, kibana, monitoring, security, threatintelligence
Leave a comment
Elasticsearch in Docker: quick notes
Goals: single node elasticsearch single node kibana password for all accounts https between all components behind traefik future post: collect network logs (routers) future post: collect application logs (web servers, dns servers, docker) future post: collect application metrics future post: … Continue reading
Posted in Computer, Docker, Linux, Networking
Tagged docker, elastic, kibana, logstash, metrics, observability, search, traefik
Leave a comment
Traefik reverse-proxy with ModSecurity
Traefik itself does not include WAF capabilities. If you want to add this capability, you can opt to replace Traefik with Apache httpd or nginx coupled with ModSecurity, however you loose the autoconfiguration of Traefik. Fortunately, Alexis Couvreur has developed … Continue reading
Backup gitea container
Gitea is great when you want a fast, light and yet user-friendly git repositories. Alternatives would be Gogs, Gitlab or even Github. Gitea documentation tells you to use docker exec to perform a backup. However, this prevents you from using … Continue reading
Applying Audit Policies
If like me, you are trying to enable Audit Policies on Windows computers in a domain using Local Policies > Audit Policy, and it does not work, then you came to the right place. The reason is: that is the … Continue reading