Red Hot Cyber, il blog italiano sulla sicurezza informatica
Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Select language
Italian Spanish
Search
320x100 Itcentric
Crowdstriker 970×120

Author: Andrea Cavallini

Anubi, the EDR for your malware and network security

Andrea Cavallini 17/06/2024

In the current modern context where a cyber war is in progress, the concept of cybersecurity awareness and perimeter fortification is increasingly necessary. In this situation, target objectives are spread through all people who can access the network using a simple computer. User activity control and monitoring have to be strong but they have to leave more comfortable the user experience and the work activity in general. So, a good question: how do I reach it? There are many tools usable to check, monitor and control user activities, enterprise or open source: the first ones are the most stable, maintained and supported

ClamAV

ClamAV and signatures generation

Andrea Cavallini 02/05/2024

Threat intelligence has many fields of application, starting from control of infrastructures using automation processes to security increasing the perimeter of applications and solutions in general. One of the most common applications of this concept is antimalware tools, which enterprise antivirus solutions are preferable rather than open sources due to two main aspects: enterprise solutions are covered by official support in case of any type of problem (even if this is not always true due to different type of subscriptions) and signatures in the enterprise tools are more precise and updated than open sources. What can we do to perform a significant

Loki, starting IOC discovering

Andrea Cavallini 02/05/2024

Today is always more important and significant to be efficient in controlling our own infrastructures; actions to put in place for this verification process shall require both proactive and post-action approach: the last aspect is fundamental when an attack or in general any malicious behavior is conducted on a targeted system and we have to know all about this action, from its start to its finalization. The paradigm “it’s happened and I have to know all about it” is checked as well by Loki. Loki is an open source tool, developed in Python by Florian Roth (aka Neo23x0) and it is a

Category