Segnaliamo questo talk molto tecnico ed interessante.
Si terrà in hacklabbo presso xm24 (via Aristotele Fioravanti 24, Bologna)
venerdì 27 maggio dalle ore 22.00:
http://osm.org/go/xdUSVMLM6?m=&node=3464977118
---------- Forwarded message ----------
Date: Tue, May 24, 2016 at 2:59 PM
Subject: [Hacklabbo] Talk "Suricata and Netfilter: The Mixed Mode" 27 Maggio
Ciao carie,
vi confermo che _Venerdì 27 dalle 22:00_ Giuseppe Longo[0] ci parla di
Suricata e Netfilter.
Di seguito una anglo-descrizione semiapprofodita del talk e una serie di
cose che ci farà vedere durante la serata :)
---
Suricata is an open source network intrusion detection and prevention
system. It analyzes the traffic content against a set of signatures to
discover known attacks and also journalize protocol information.
With the support of the Netfilter features, it was possible to build an
IPS or IDS system, but now a new dynamic IDPS system is available. The
purpose of this talk is to introduce the “mixed mode”, which permits to
combine IPS and IDS. For example, this new approach allows a single
Suricata to operate as IDS for traffic that is too critical to send
through IPS and act as IPS for the rest of the it.
The following point will be covered:
- Motivation about mixing IPS and IDS
- A brief introduction about Netfilter
- How Suricata work as IPS/IDS with Netfilter
- Advanced setup of Suricata and Netfilter in mixed mode
---
Sapevatelo: 'sto talk lo farà all' RMLL 2016[1], noi ce lo becchiamo in
anteprima :D
Post-talk alcolismo e molestia collettiva!
Se capisco come si usa gimp faccio una locandina, giuro.
Intato, siateci, portate e forwardate.
cya
0: http://git.netfilter.org/iptables/log/?qt=author&q=Giuseppe+Longo
1: https://sec2016.rmll.info/program/#suricata
_______________________________________________
Hacklabbo mailing list
Hacklabbo@xxxxxxxxxxx
https://liste.indivia.net/listinfo/hacklabbo
--
Davide Alberani <da@xxxxxxxxxxxxxx> [PGP KeyID: 0x465BFD47]
http://www.mimante.net/
|