The 2025 Global Mobile Threat Report by Zimperium reveals significant threats to smartphone security, including an increase in smishing and risks from sideloaded apps. Work apps often share data internationally, exposing vulnerabilities. Many outdated phones lack critical updates, making them security liabilities. Users are advised to verify texts, use official app stores, and embrace updates for better protection.
Author Archives: SIGEA
Stop Chasing Ghosts in Your SIEM: Let GEKO Hunt Threats for You
GEKO is an open-source tool that automates threat-hunting by connecting threat intelligence from OpenCTI with detection rules in Elasticsearch. It analyzes threat actors’ techniques, inventory detection rules, and generates a report card on defense effectiveness, enabling security analysts to focus on relevant threats instead of unnecessary rules, enhancing their detection capabilities.
Markdown Mastery: Stop Writing Like a Caveman and Start Formatting!
This guide humorously outlines how to enhance documentation using GitLab-Flavored Markdown (GLFM). It emphasizes the advantages of Markdown for clear, organized content, including features like tables, Mermaid diagrams, and code formatting. The aim is to upgrade dull documentation into engaging, professional pieces that are easy to read and update.
GEKO Part 3: Gitlab + Elasticsearch + Kibana!
This content introduces the integration of Elasticsearch and Kibana in the GEKO stack, supporting Detection as Code. Steps include starting these services, managing detection rules through GitLab, and visualizing data. The guide emphasizes automation, validation, and creating dashboards for security management, encapsulating a modern approach to security engineering.
GEKO Part 2: Gitlab + Elasticsearch + Kibana!
GEKO integrates GitLab, Elasticsearch, and Kibana to enhance detection rule management through a framework called Detection as Code (DaC). After setting up GitLab using Docker, users can register a GitLab Runner to manage tasks efficiently. The project emphasizes automation, version control, and enhanced visibility for scalable systems.
GEKO Part 1: Gitlab + Elasticsearch + Kibana!
The content introduces GEKO, integrating Gitlab, Elasticsearch, and Kibana for enhanced rule management termed Detection as Code (DaC). It outlines prerequisites, hardware, and software requirements, followed by a detailed deployment guide using Docker. The conclusion emphasizes the successful setup of GitLab and suggests next steps for further configuration and functionality.
You must be logged in to post a comment.