Security Category

QRadar – Network Design

On Tuesday March 23rd, 2021 Wednesday March 24th, 2021 Filed under Security

IBM QRadar Security Information and Event Management (SIEM) helps security teams accurately detect and prioritize threats across the enterprise. Keep reading →

QRadar CE – v7.3.3

On Tuesday February 25th, 2020 Thursday February 27th, 2020 Filed under Security, Server, VMware

IBM released a new version of the QRadar Community Edition to keep up with the commercial version. Keep reading →

QRadar CE – Under the Hood

On Sunday January 6th, 2019 Thursday July 11th, 2019 Filed under Security, Server

IBM is bringing free QRadar to a wider audience with Community Edition. Community Edition is a fully-featured version of QRadar that is low memory, low EPS, and includes perpetual license.

Keep reading →

QRadar CE – Installation

On Sunday January 6th, 2019 Thursday July 11th, 2019 Filed under Security, Server, VMware

IBM QRadar Community Edition is a free version of QRadar that is based off of IBM core enterprise SIEM. Users, students, security professionals, and app developers are encouraged to download QRadar Community Edition to learn and become familiar with QRadar.

Keep reading →

KeePass(X)(C)

On Thursday November 15th, 2018 Monday May 27th, 2019 Filed under Security, Desktop, Work

If you are not just try to meet the very minimal password policies that your service providers try to enforce, but really care about your security and privacy, you should already use a of password manager…

Keep reading →

redsocks

On Wednesday July 4th, 2018 Thursday November 15th, 2018 Filed under Security, Firewall

redsocks is a transparent proxy relay solution for those dummy applications that do not support communication via proxy servers. Transparent because the clients will not even notice if this traffic is passed to a proxy. As this solution is working on TCP/UDP layers, this means almost any application’s traffic can be pushed through and forced to use a real proxy.

Keep reading →

SIEM @Home

On Monday December 18th, 2017 Thursday September 20th, 2018 Filed under Security, Firewall, Server

I’m already mentioned in my previous article about Traffic Analysis in Qubes OS, that the IDS system alerts and logs should be passed to a log management system where we can correlate them with other logs and alerts. That system can be called SIEM

However a real SIEM system makes sense in an enterprise environment only, because it is requires 7×24 monitoring, and it is also needs special knowledge and experience to analyze the results.

Keep reading →

Traffic Analysis in Qubes OS

On Friday April 21st, 2017 Monday December 18th, 2017 Filed under Security, Desktop, Firewall, Qubes

One of the best thing in Qubes OS that you can use special type of VMs called ProxyVM (or FirewallVM). The special thing is that your AppVMs see this as a NetVM, and the NetVMs see it as an AppVM.

Keep reading →

Qubes – 3.2

On Thursday September 29th, 2016 Tuesday January 10th, 2017 Filed under Security, Desktop, Qubes

Qubes OS version 3.2 have been released.

Keep reading →

Qubes – 3.1

On Wednesday March 9th, 2016 Thursday March 10th, 2016 Filed under Security, Desktop, Qubes

Qubes OS version 3.1 have been released.

Keep reading →