OpenSearch: How to Fix Security Analytics Error When You Try to Create a New Detector
Sometimes, you can encounter an error shown at the bottom right when you try to create a detector or click…
Threats
RevC2 and Venom Loader Detection: New Malware Strains Massively Deployed via MaaS in a Sophisticated Campaign
New day, a new menace for cyber defenders. Recently, security researchers from ThreatLabz have uncovered two novel malicious strains adding…
Resizing Persistent Volume Claims (PVCs) for OpenSearch in Kubernetes: Challenges and Solutions
Managing storage requirements for an OpenSearch cluster deployed via a Helm chart in Kubernetes can present unique challenges, especially when…
OpenSearch: How to Update index-pattern in “Broken” Visualization
If index-pattern was recreated and its id hasn’t been customized to the same as it was before, you’ll get an…
Adding Processing Timestamp and Hostname in Logstash Using Ruby
When processing event streams with Logstash, it can be useful to record the time an event was processed and the…
Filebeat: Receiving Docker logs in Kafka
To receive logs from your containers in Kafka topic, we have to do these steps: Install Filebeat echo "deb https://artifacts.elastic.co/packages/8.x/apt…
OpenSearch Circuit Breakers
OpenSearch employs circuit breakers to prevent nodes from running out of Java Virtual Machine (JVM) heap memory, which could lead…
Splunk: How to Write a Query to Monitor Multiple Sources and Send Alert if they Stop Coming
Step 1:Write a Query to Monitor Multiple Sources Identify the log sources you want to monitor. Create a Splunk search…
SmokeLoader Malware Detection: Notorious Loader Reemerges to Target Companies in Taiwan
The nefarious SmokeLoader malware resurfaces in the cyber threat arena targeting Taiwanese companies in multiple industry sectors, including manufacturing, healthcare,…
Using a Custom Script to Trigger an Action in Monit
Let’s see how to use a custom script to trigger an action if a service has restarted or if there…