all InfoSec news
Generating Your Own Blocklists with the Stratosphere AIP Framework
Malware Analysis, News and Indicators - Latest topics malware.news
This blog post was authored by Veronica Valeros (@verovaleros) on August 4th, 2023.
In this blog post, we describe how to run AIP on a cloud instance server, to read from Zeek logs and generate your own blocklist feed of IPs to block. The blog is divided into five parts:
What is AIP?
We describe how to set up a new cloud server in Digital Ocean.
How to configure the cloud server with Zeek running.
Fourth, how to prepare the …
august block blocklist blog blog post cloud framework instance ips logs own parts run server stratosphere what is zeek