Install Icinga 2 on Debian 10 Buster

2
In this guide, we are going to learn how to install Icinga 2 on Debian 10 Buster. Icinga 2 is an opensource monitoring solution that is used to monitor the availability of various network resources including host metrics such as system uptime, load, memory, disk free space, running processes, network services such as HTTP, SMTP, SNMP, SSH, etc. Icinga...

Logstash: Write Specific Events to Specific Index

0
Logstash: Write Specific Events to Specific Index
In this blog post, you will learn how to write specific events to specific index using Logstash. Logstash is a free and open server-side data processing pipeline that ingests data from a multitude of sources, transforms it, and then sends it to your favorite "stash", which in this example setup is an Elasticsearch. Logstash can be configured to write specific...

How to Easily Enable and Configure Cortex Analyzers

0
How to Enable and Configure Cortex Analyzers
Follow through this tutorial to learn how to enable and configure Cortex Analyzers. Cortex is an opensource software created by TheHive that can be used by IT security personnel to manually or automatically (through Cortex REST APIs) analyze event/incident observables and IOCs such as IP addresses, file, hashes, domain names, URLs, email addresses e.t.c. Analyzers allow analysts and security...

Install latest Grafana on Debian 10

0
Install latest Grafana on Debian 10
In this tutorial, you will learn how to install latest Grafana on Debian 10. Grafana is an open source analytics and monitoring solution that enables you to query, visualize and alert on various systems metrics that can be pulled from various time series databases such as Graphite, InfluxDB & Prometheus etc. Install latest Grafana on Debian 10 There are various methods in...

Detect Changes to Critical Files in Linux using Auditbeat and ELK

2
In this tutorial, you will learn how to detect changes to critical files in Linux using Auditbeat and ELK. Auditbeat is one of the elastic beats that according to Elastic page, collects Linux audit framework data and monitor the integrity of the files. It ships these events in real time to the rest of the Elastic Stack for further...

Quick Way to Install and Configure SNMP on Ubuntu 20.04

0
install and configure snmp ubuntu 20.04
In this guide, we are going to learn how to install and configure SNMP on Ubuntu 20.04. SNMP is an acronym for Simple Network Management Protocol. It provides an agentless method of managing and monitoring of network devices and servers for health information, system metrics such as CPU load, Physical Memory usage, number of running processes, service state e.t.c...

Install Zabbix Agent on FreeBSD 12

1
install zabbix agent
Learn how to install Zabbix Agent on FreeBSD 12 for Zabbix monitoring. Install and configure Zabbix server on Debian 10 Buster. Install Zabbix 4.x from Sources on Debian 10 Buster Install Zabbix Server from APT on Debian 10 Buster Install Zabbix Agent on FreeBSD 12 In order to monitor Linux hosts with Zabbix, you need to install Zabbix agents on them. In this guide,...

Fix AlienVault HIDS Events Displaying 0.0.0.0 as IP Address

9
In this guide, we are going to show you how to fix AlienVault HIDS events displaying 0.0.0.0 as IP address. Are you running AlienVault OSSIM 5.7.1 and you are experiencing an issue where by it is not parsing events correctly and instead of displaying the actual hostnames or IP addresses as it is on the events, it displays 0.0.0.0? Fix...

Install InfluxDB on Fedora 30/Fedora 29

0
Welcome to our guide on how to Install InfluxDB on Fedora 30/Fedora 29. InfluxDB is an open source time series database written in Go to provide scalable datastore for system metrics, events and real-time analytics. InfluxDB is designed to be fast, highly available and to handle high write and query loads. It is one of the major components of...

Install Cortex on Ubuntu 22.04/Ubuntu 20.04

0
Install Cortex on Ubuntu 22.04/Ubuntu 20.04
In this tutorial, you will learn how to install Cortex on Ubuntu 22.04/Ubuntu 20.04. Cortex is a powerful observable analysis and active response engine that can be used by SOC analysts or any IT security personnel to analyze collected event/incident observables at scale by by querying a single tool instead of multiple tools, actively respond to threats and interact with...