Articles on this Page
- 07/10/09--15:21:_Visualising Sguil session...
- 08/12/09--15:10:_Detecting encrypted...
- 09/02/09--13:21:_Detecting encrypted...
- 10/06/09--05:40:_net-entropy Sguil agent...
More Channels
- Feb 24: Banjo Hangout Newest 100...
- Feb 24: Seguros, el blog de los Seguros...
- Feb 24: Twitter / Favorites from...
- Feb 24: Mindless Dreaming
- Feb 24: backpage.com | restaurant,...
- Nov 26: look ahead | Keyword Feed
- Nov 26: listing flyers | Keyword Feed
- Feb 23: loose 1 pound a day | Keyword Feed
- Jan 28: libertybroadcasting.net |...
- Feb 21: lenten | Keyword Feed
- Feb 4: linda cattelan | Keyword Feed
- Jan 27: listen to message | Keyword Feed
- Dec 9: living mandala | Keyword Feed
- Nov 26: longinus | Keyword Feed
- Dec 9: lib radio | Keyword Feed
- Jan 24: layouts and graphics | Keyword Feed
- Jan 4: latonya on blogtalkrado |...
- Nov 26: lccs | Keyword Feed
- Nov 26: lebron james | Keyword Feed
- Feb 9: lemurian crystal | Keyword Feed
- Dec 9: leslie vernick | Keyword Feed
- Feb 16: lgs | Keyword Feed
- Dec 20: lil ljay | Keyword Feed
- Feb 15: linda caricato | Keyword Feed
- Jan 28: lindy zucker | Keyword Feed
- Nov 26: lisa capehart | Keyword Feed
- Feb 16: live free psychic chat | Keyword...
- Dec 20: live source media | Keyword Feed
- Feb 23: lockness monster | Keyword Feed
- Dec 24: loi dattraction | Keyword Feed
- Feb 9: ibm thinkpad a31 | Keyword Feed
- Feb 12: ibc | Keyword Feed
- Feb 21: ic wellness journey | Keyword Feed
- Feb 22: hygenics | Keyword Feed
- Jan 5: junious ricardo stanton |...
- Dec 14: latest headlines | Keyword Feed
- Dec 14: laverne lott | Keyword Feed
- Jan 22: lay aside every weight | Keyword...
- Nov 26: leanna hamill | Keyword Feed
- Jan 28: learn to dj | Keyword Feed
- Nov 26: legalization of marijuana |...
- Jan 29: lemurian | Keyword Feed
- Dec 9: le pearl saturday | Keyword Feed
- Dec 9: leslie | Keyword Feed
- Feb 13: letting know | Keyword Feed
- Jan 22: lg rangers talk radio | Keyword...
- Feb 16: life sucked out | Keyword Feed
- Dec 14: liif3 | Keyword Feed
- Feb 21: lilly rivlin | Keyword Feed
- Jan 29: lil tre | Keyword Feed
|
|
Are you the publisher? Claim this channel |
|
Search in 126,293,059 RSS articles:
Channel Description:
Latest Articles in this Channel:
- 07/10/09--15:21: Visualising Sguil session data with NetFlow (chan 1411972)
- 08/12/09--15:10: Detecting encrypted traffic with frequency analysis (chan 1411972)
- 09/02/09--13:21: Detecting encrypted traffic with frequency analysis – Update (chan 1411972)
- 10/06/09--05:40: net-entropy Sguil agent and wiki (chan 1411972)
I think this is the first time I’ve explicitly mentioned Sguil, and I’m not going to talk too much about the package itself as many others have already done it for me. Basically, Sguil is a nicely integrated suite of (free) tools that will help you put NSM principles into practice. It has a wonderful [...]
in_only
bidirectional
hr
Dataline
hr
Let’s start with a little disclaimer: I am not a cryptanalyst. I am not a mathematician. It is quite possible that I am a complete idiot. You decide. With that out of the way, let’s begin. NSM advocates the capture of, amongst other things, full-content data. It is often said that there’s no point in [...]
hr
Dataline
hr
I recently wrote about a plan for detecting encrypted traffic, where I mentioned in the comments that I’d come across a package called net-entropy (very detailed writeup here). I’ve been in touch with Julien Olivain, one of the authors, and he’s kindly given me the sources to experiment with. And experiment I shall – I’ll [...]
hr
Dataline
hr
The story so far: Detecting encrypted traffic with frequency analysis Detecting encrypted traffic with net-entropy, part one Detecting encrypted traffic with net-entropy, part two I’ve written a basic Sguil agent that will upload net-entropy’s RISING ALARM messages into Sguil. You can download the agent here, and the config file here. On a Sguil sensor that [...]
net-entropy sguil
net-entropy sguil events
net-entropy sguil detail
hr
Dataline
hr