Modsecurity 3 dos / scaraping protection Working !

Yess this is a brute force that work for modsecurity 3 and its not that many. Spent days searching the net and trying to find out how to get them working. First setup a devoloper box Start by cloning this repo i have https://github.com/Ollebo/modsecurity3 it using the OWASP Modsecurity docker that i run is boxWARNING: i started with the first… Read more →

Filebeat => logstash => Elasticsearch and working modules

Setting up filbeat modules to work when you are uisng logstash to send logs over to elastic. So i started setting up filbeat to ship my mysql-slow.log and planned to use the filbeat module. The logs started flowing and after some time i got the logs into the correct index. But to my surprise the logs where not correct parsed.… Read more →

WordPress + Gatsby = Love

I like the ide of using wordpress as a backend service and then use a static file genertor to fetch the data from wordpress and then generate static files. Its how this blog is now woring with firebase and google cloud. But before i started using firebase a build a small demo project to use gatsby to extract data from… Read more →

Openvas results to json and Elasticsearch and kibana

I have some openvas scanners running but to use the scanners a need the results as json files. Then i can use my ELK stack to visualize and have dashboards over the results from the scan. Before I used vulwisperer to export the result from openvas and to get them into elk. But from the latest release of openvas the… Read more →

Send Openvas result to Kibana with vulwisperer

Vulwisperer is a tool to read the finding from a openvas scanner and to send them to a other tools. Here i want them to be sent to a elasticsearch and kibana. To do this i first need to start a openvas scan and get some results. – Then use vulwisperer to get the results from openvas and store the… Read more →

Nikto webbscanner for kubernetes (samma.io)

I hope that you have already test my nmap scanners for kubernetes. Now its time for some more OWASP and webb scanner.Nikto is a webb application scanners and run against a target to verify its security. I have created a nikto docker and a helm job that deploys the nikto scanner into your kubernetes cluster.The nikto scanner will then on… Read more →