Wazuh Upgrading Wazuh Components In this post, I'll be covering process of upgrading Wazuh tailored to some customizations in my environment. 0xBEN Jun 22, 2023 5 min read
BTL1 Prep BTL1 Prep: Boss of the SOC v1 on Proxmox In this post, I walk you through the steps of running on Proxmox the Boss of the SOC v1 challenge from CyberDefenders. 0xBEN Apr 28, 2023 5 min read
Home Lab Configuring Unattended Upgrades on Debian In this post, I show you how to configure the Unattended Upgrades service on Debian-based distributions. 0xBEN Apr 21, 2023 5 min read
Proxmox Proxmox: Running OpenCTI In this post, I walk you through steps of running an OpenCTI server to aggregate threat intelligence into a single interface. 0xBEN Jan 21, 2023 12 min read
Proxmox Proxmox: Run Docker on Linux Containers (LXC) In this post, I show you how to run Docker in your Linux Containers (LXC), allowing you to save on resource requirements typically required by a VM. 0xBEN Jan 9, 2023 4 min read
Proxmox Proxmox: GNS3 Remote Server In this post, I demonstrate how to get GNS3 Remote Server running in Proxmox, and how to connect to it using a GNS3 client on Windows. 0xBEN Dec 13, 2022 10 min read
Wazuh Wazuh: File Integrity Monitoring In this post, I show you how to configure and monitor File Integrity Monitoring (FIM) in Wazuh. 0xBEN Dec 9, 2022 12 min read
Home Lab Threat Hunting with FleetDM and Osquery Recently, the folks at Chainguard open-sourced some Osquery threat hunting queries, so I wrote a script to convert the queries to YAML docs for import into FleetDM. 0xBEN Oct 22, 2022 6 min read
Wazuh Wazuh: Enhancing Zeek Logs with RITA In this post, I demonstrate how to install and configure RITA on a NIDS node running Zeek and ingest the RITA output with Wazuh command logging. 0xBEN Oct 7, 2022 8 min read