All Posts

Fighting Bot Attacks presentation at FIRST

Took some time to speak to FIRST attendee regarding some of the lessons learned at Zenedge fighting bot attacks. In the presentation, I covered an attacker whom persistently kept coming back to a customer and bypassing our mitigation techniques and how we evolved to protect ourselves.

Deploying Hardened Splunk with Ansible

Just finished 2 blog post on the Splunk blog which covers how to get started with Ansible and deploy harden Splunk instances. Also dive I into how to deploy and manage multiple custom Splunk environment in AWS using Ansible.

Search the web from Splunk using Faroo

I have been away for a while, but been very busy at Github. Just wrapped up a app for Splunk that allows you to search the web using key words from a specific Splunk field.

Generating Elliptical Curve (EC) Key/Pair

Cryptography Bob Just finished a post over at Splunk blog regarding using EC (Elliptical Curve) certs with in Splunk. Although the explanation was geared towards someone deploy the keys in a Splunk deployment the key pair could be used in any situation (proxy, web server etc.

Nexpose Python Client Library

Just wrapped up a client library for Nexpose. I forked one already created, but added custom reporting support to it, which was a feature that a friend was requesting.,, Public CIF Updates

Its been a while since I provided an update on the ongoing projects or anything new. First off want to extend a huge public thank you to Rebekah Monson (@rsm) for making sensorsub.