I was hoping to see crowdsec in there. I like the approach they took, having everyone contribute for zero day. I think all these projects could benefit from the “crowd-effect”. Harvesting user log submissions and distributing alerts.
Great video, very interesting list of tools. One area you forgot Patch management. Not much I could find open source but chocolaty and poweshell winget package managers and making an update script on all the clients but I'd recommend PDQ Deploy with PDQ inventory we ended up paying for the pro version don't know anything else that works as good it's a steep learning curve but worth it in the long run as it's mostly automated now and had the report functionality as well.
Great guidance Sir, According to you said "Making Video on PFsence", My answer is Yes, but kindly make video on PFsence, ELK Stack, Wazuh and Atomic Red Team. And guide us how to integrate them to make a Perfect Security Solution
Thanks for the savvy list! Keep up the good work! What would you recommend to integrate OSSINT and reputation to your ELK? Any good WAF tools besides ModSecurity? Again great content!
Thanks for sharing! There a couple in there I never even heard about. If you would kindly put the links for the services you mention into the video description, then people would easily get to the actual pages. Otherwise great pieces of advice!
A video on Packetfence setup with VLAN control out of band setup.MAB is usually all I need for my installation without Authentication. Just want to know when devices connect to an open switch port and make sure access is blocked.
Open source- “denoting software for which the original source code is made FREELY available and may be redistributed and modified.” Stop trying to redefine what is already defined. Open source is to REMOVE the pay wall not try to create a new one and say “it doesn’t mean it’s free.”
@@Sasquatchbones knowing if it is free and what you can do with it is based on the license. For example RHEL is open source but you can't use it if you did not subscribe from their services. Educate yourself before trying to educate others. People like you are why companies are sued.
Great Great job! What about verifying the libre code? Do you use a software analysis tool and Wireshark before committing and or updating one of these apps? "Norm" question, is it true, using a chromebook is best for most normies security wise vs Microsoft? And the best option for most windows users who cant afford a dedicated Linux is to use Fedora in a virtual machine in Windows? Fyi, its a bit odd how your voice is a bit hard to here despite your mic.. not being critical, you rock!
You are missing the most important thing. How do you connect all of them together?. So a kind of SOAR is needed or some kind of automation, Shuffle is a good option.
I was hoping to see crowdsec in there. I like the approach they took, having everyone contribute for zero day. I think all these projects could benefit from the “crowd-effect”. Harvesting user log submissions and distributing alerts.
Great video... Thank you for giving us some specifics about how to learn each tool...
Great video! Please make a video of the installation of PFSENSE and any other slightly complicated tools. Thank you!
Great video, very interesting list of tools. One area you forgot Patch management. Not much I could find open source but chocolaty and poweshell winget package managers and making an update script on all the clients but I'd recommend PDQ Deploy with PDQ inventory we ended up paying for the pro version don't know anything else that works as good it's a steep learning curve but worth it in the long run as it's mostly automated now and had the report functionality as well.
I wish there were more quality high-level overviews like this in FOSS!
Great guidance Sir, According to you said "Making Video on PFsence", My answer is Yes, but kindly make video on PFsence, ELK Stack, Wazuh and Atomic Red Team. And guide us how to integrate them to make a Perfect Security Solution
search for Taylor Walton here on youtube.
OPNsense* the true opensource FW
Great resource - thanks! I'd love to see a video on setting up and configuring Packet Fence. It sounds interesting.
Nice points, I will have a look into these tools as I am setting up my small office network now.
Great rundown. Thank you for sharing!
Super valuable info. Thank you for sharing your knowledge.
Yes please FPsense setup tutorial....
Like the Atari 400. One of my first was the 800 ;-)
Great Video, make the video on FPsense and all the tools you have mentioned
It's pfSense, not PFsense.
Please, we would LOVE to see a step by step PFsense setup
Thanks for the savvy list! Keep up the good work! What would you recommend to integrate OSSINT and reputation to your ELK? Any good WAF tools besides ModSecurity? Again great content!
What kind of OSSINT? A few other open source WAFs - IronBee, NAXSI, WebKnight, Shadow Daemon
Hey mate, any reason for not linking these tools in the description?
What do you think about Crowdsec and the Lynis security audit tool?
Thanks for sharing! There a couple in there I never even heard about. If you would kindly put the links for the services you mention into the video description, then people would easily get to the actual pages. Otherwise great pieces of advice!
Hi, just an update. ELK changed its licensing terms. Check that out before including in your planning
A video on Packetfence setup with VLAN control out of band setup.MAB is usually all I need for my installation without Authentication. Just want to know when devices connect to an open switch port and make sure access is blocked.
I will like to see you do a video on packet fence
Yes because the videos on YT as of now are not helpful
Thanks for the Video, very interesting indeed. Please do the Pfesense Video !
Please do a video on offense, that would be great
for those who do not know, calling it open-source do not automatically mean it is free. It just means source code can be viewed.
Open source- “denoting software for which the original source code is made FREELY available and may be redistributed and modified.”
Stop trying to redefine what is already defined. Open source is to REMOVE the pay wall not try to create a new one and say “it doesn’t mean it’s free.”
@@Sasquatchbones knowing if it is free and what you can do with it is based on the license. For example RHEL is open source but you can't use it if you did not subscribe from their services. Educate yourself before trying to educate others. People like you are why companies are sued.
what about edr / xdr? can't find any competent OSS
Hope someone can answer this question. can I combine all these Free Open source vulnerability scanners? Thank you Before hand
security onion is great
Are you familiar with security onion
Hi, I would like to know more about pfsense. Many thanks for the video!
For your algo!
Can you send us the link to download of all these oppl source software
I was hoping to see members of DeadSec here.
Why do none of these videos cover appsec? It has to be considered in an overall cyber strategy
Great Great job! What about verifying the libre code? Do you use a software analysis tool and Wireshark before committing and or updating one of these apps?
"Norm" question, is it true, using a chromebook is best for most normies security wise vs Microsoft? And the best option for most windows users who cant afford a dedicated Linux is to use Fedora in a virtual machine in Windows?
Fyi, its a bit odd how your voice is a bit hard to here despite your mic.. not being critical, you rock!
Heey thank you for all
2 CPUs?
____ Any free VPN somewhere.
Great post however your star ⭐️ ratting is reversed…. The easier it is the more star and the harder it gets less or no stars ⭐️….
Qual-is, Wa-Zoo
You are missing the most important thing. How do you connect all of them together?. So a kind of SOAR is needed or some kind of automation, Shuffle is a good option.
Emanuel updating is the worst when it comes to software.
Openvas is no longer free but now a trial.
why you look so angry?
Openvas is a nightmare if you cant spend coin on infosec your business is trash
Non profits are trash?