I was hoping to see crowdsec in there. I like the approach they took, having everyone contribute for zero day. I think all these projects could benefit from the “crowd-effect”. Harvesting user log submissions and distributing alerts.
Great video, very interesting list of tools. One area you forgot Patch management. Not much I could find open source but chocolaty and poweshell winget package managers and making an update script on all the clients but I'd recommend PDQ Deploy with PDQ inventory we ended up paying for the pro version don't know anything else that works as good it's a steep learning curve but worth it in the long run as it's mostly automated now and had the report functionality as well.
Great guidance Sir, According to you said "Making Video on PFsence", My answer is Yes, but kindly make video on PFsence, ELK Stack, Wazuh and Atomic Red Team. And guide us how to integrate them to make a Perfect Security Solution
Thanks for the savvy list! Keep up the good work! What would you recommend to integrate OSSINT and reputation to your ELK? Any good WAF tools besides ModSecurity? Again great content!
A video on Packetfence setup with VLAN control out of band setup.MAB is usually all I need for my installation without Authentication. Just want to know when devices connect to an open switch port and make sure access is blocked.
Thanks for sharing! There a couple in there I never even heard about. If you would kindly put the links for the services you mention into the video description, then people would easily get to the actual pages. Otherwise great pieces of advice!
Open source- “denoting software for which the original source code is made FREELY available and may be redistributed and modified.” Stop trying to redefine what is already defined. Open source is to REMOVE the pay wall not try to create a new one and say “it doesn’t mean it’s free.”
@@Sasquatchbones knowing if it is free and what you can do with it is based on the license. For example RHEL is open source but you can't use it if you did not subscribe from their services. Educate yourself before trying to educate others. People like you are why companies are sued.
Great Great job! What about verifying the libre code? Do you use a software analysis tool and Wireshark before committing and or updating one of these apps? "Norm" question, is it true, using a chromebook is best for most normies security wise vs Microsoft? And the best option for most windows users who cant afford a dedicated Linux is to use Fedora in a virtual machine in Windows? Fyi, its a bit odd how your voice is a bit hard to here despite your mic.. not being critical, you rock!
You are missing the most important thing. How do you connect all of them together?. So a kind of SOAR is needed or some kind of automation, Shuffle is a good option.