Experiment. Learn. Repeat.
Wazuh is a SIEM (Security Information and Event Management) system that can be used to centralize logs and other security related information from systems on our networks. Using this information, analysts can detect and respond to intrusions, attacks and other malicious activity. For this homelab, Wazuh will be used in conjunction with Suricata to monitor … Read More “Wazuh SIEM Setup in Proxmox” »
In this post, we’re going to set up an IDS (Intrusion Detection System) called Suricata for our lab. What’s an IDS? It’s a program that analyzes network traffic to look for malicious or suspicious data based on pre-configured rules. Similar to how anti-virus software can identify malware based on signatures, an IDS can analyze network … Read More “Configuring Suricata IDS in Proxmox” »
Introduction Do you use public Wi-fi? If so, do you take any precautions such as never visiting sites requiring passwords or other personal information? How about using a VPN? The reason for taking these sorts of precautions when using public Wi-Fi is the risk of a malicious actor placing themselves between your machine and the … Read More “The Importance of Encryption – Capturing Passwords with Wireshark” »
