+1.813.321.0987
MineMeld Configuration Guide

MineMeld Configuration Guide

Palo Alto MineMeld is an “extensible Threat Intelligence processing framework and the ‘multi-tool’ of threat indicator feeds. Based on an extremely flexible engine, MineMeld can be used to collect, aggregate and filter indicators from a variety of sources and make...
Infosec Articles (7/13/19 – 7/27/19)

Infosec Articles (7/13/19 – 7/27/19)

There’s a growing concern over what is thought to be a regrouping of the GandCrab ransomware developers to distribute what is being called “REvil,” “Sodin,” and “Sodinokibi” ransomware. The NCSC published a useful DNS hijacking and mitigation best...
SpamAssassin Configuration Guide

SpamAssassin Configuration Guide

Malware Patrol provides block lists compatible with SpamAssassin.   “Apache SpamAssassin is the #1 Open Source anti-spam platform giving system administrators a filter to classify email and block spam (unsolicited bulk email). It uses a robust scoring...
Accessing threat data on AWS S3 buckets

Accessing threat data on AWS S3 buckets

Malware Patrol provides some of its threat data feeds via Amazon / AWS S3 buckets. Among the feeds are the “Malware Samples (Binaries)” and the “Bitcoin Transactions (JSON format)”. Amazon Simple Storage Service has a simple web services...
DNS RPZ Firewall Configuration Guide

DNS RPZ Firewall Configuration Guide

BIND is the world’s most used DNS server and can be configured as a DNS Firewall using RPZ files (DNS RPZ). Response Policy Zone (RPZ) enables DNS administrators to selectively block name resolution of Internet resources known to be used by cyber criminals.Malware...
Cisco ASA FirePOWER Configuration Guide

Cisco ASA FirePOWER Configuration Guide

“With Cisco ASA with FirePOWER Services, you consolidate multiple security layers in a single platform, eliminating the cost of buying and managing multiple solutions. This integrated approach combines best-in-class security technology with multilayer protection...