Iron Castle Systems

Skip to content

VMware
AWS
Powershell
Security
Projects
Misc.
Client Access
About

Search for:

DShield Traffic Analysis using ELK, (Thu, Mar 6th)

March 5, 2025 David Leave a comment

This post was originally published on this site

Using the Kibana interface, sometimes it can be difficult to find traffic of interest since there can be so much of it. The 3 logs used for traffic analysis are cowrie, webhoneypot and the firewall logs. Other options to add to the honeypot are packet capture, netflow and Zeek.

Post navigation

Previous PostNew year, new Heroes – March 2025 Next PostScale and deliver game streaming experiences with Amazon GameLift Streams

Leave a Reply Cancel reply

You must be logged in to post a comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

VMware

SANS Security

Python Bot Delivered Through DLL Side-Loading, (Tue, Mar 18th) March 18, 2025
ISC Stormcast For Tuesday, March 18th, 2025 https://isc.sans.edu/podcastdetail/9368, (Tue, Mar 18th) March 18, 2025
Static Analysis of GUID Encoded Shellcode, (Mon, Mar 17th) March 17, 2025
ISC Stormcast For Monday, March 17th, 2025 https://isc.sans.edu/podcastdetail/9366, (Mon, Mar 17th) March 17, 2025
Mirai Bot now incroporating (malformed?) DrayTek Vigor Router Exploits, (Sun, Mar 16th) March 16, 2025

AWS

AWS Weekly Roundup: AWS Pi Day, Amazon Bedrock multi-agent collaboration, Amazon SageMaker Unified Studio, Amazon S3 Tables, and more March 17, 2025
AWS Pi Day 2025: Data foundation for analytics and AI March 14, 2025
Collaborate and build faster with Amazon SageMaker Unified Studio, now generally available March 13, 2025
Amazon S3 Tables integration with Amazon SageMaker Lakehouse is now generally available March 13, 2025
DeepSeek-R1 now available as a fully managed serverless model in Amazon Bedrock March 10, 2025

Microsoft

Microsoft Ability Summit 2025: Accessibility in the AI era March 18, 2025
How real-world businesses are transforming with AI — with more than 140 new stories March 10, 2025
Microsoft unveils Majorana 1 February 19, 2025
A new level unlocked February 19, 2025
The value of AI: How Microsoft’s customers and partners are creating differentiated AI solutions to reinvent how they do business today January 28, 2025

Iron Castle Systems

Tag Cloud

AWS
Microsoft
Powershell
SANS
Security
Virtualization
VMware

Recent Posts

Python Bot Delivered Through DLL Side-Loading, (Tue, Mar 18th) March 18, 2025
Static Analysis of GUID Encoded Shellcode, (Mon, Mar 17th) March 17, 2025
Mirai Bot now incroporating (malformed?) DrayTek Vigor Router Exploits, (Sun, Mar 16th) March 16, 2025
AWS Pi Day 2025: Data foundation for analytics and AI March 14, 2025
Collaborate and build faster with Amazon SageMaker Unified Studio, now generally available March 13, 2025

Archives

Iron Castle System info@ironcastle.net Proudly powered by WordPress Theme - twentyfourteen

Manage Cookie Consent

To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options Manage services Manage {vendor_count} vendors Read more about these purposes

View preferences

{title} {title} {title}