Just wanted to share this excellent resource as I have been mentoring new security professionals and a majority of them have never written a script before. Open course ware is one of the greatest things to come out in recent years and I understand this is one of the best intro programing lectures:
http://ocw.mit.edu/courses/electrical-engineering-and-computer-science/6-00-introduction-to-computer-science-and-programming-fall-2008/lecture-videos/
Saturday, August 28, 2010
Thursday, August 12, 2010
ArcOSI - ArcSight Open Source Intelligence
Just in time for the ArcSight annual users conference I will be presenting on integrating Open Source Intelligence in ESM and have updated the original malwarefeed.py script with a version which can pull from multiple configurable sources!
If you want to give it a spin on your own environment now, download the python script version below and start streaming thousands of known malicious IP's right into ESM via CEF syslog.
http://code.google.com/p/arcosi/
usage: ./arcosi.py 127.0.0.1
If you want to give it a spin on your own environment now, download the python script version below and start streaming thousands of known malicious IP's right into ESM via CEF syslog.
http://code.google.com/p/arcosi/
usage: ./arcosi.py 127.0.0.1
Subscribe to:
Posts (Atom)