January 16th, 2012 
Mourad Ben Lakhoua The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) released their monthly monitor report in collaboration with US-CERT, the report focus to assist the community with ways to secure and protect their environment. If we look at the report it is stated the increase of highly sophisticated malwares that are targeting different operating and industrial [...]
November 8th, 2011 Mourad Ben Lakhoua On Monday there has been some outage for several Internet service providers. This is accepted for small companies with limited online resources but for major ISP’s situation change. Level3 is one of the companies affected by this problem due to software update for juniper network router (update from version 10.2 to 10.3). This equipment failure [...]
Posted in Network security 
Tags: Network Avalibility, network discovery, Network Monitoring 
No Comments » August 31st, 2011 Mourad Ben Lakhoua As security professionals we often know what needs to be done, however convincing Management to invest in certain software can be hard. Monitoring Internet usage can be a controversial action, one that Management might be reluctant to agree to unless the security professional can clearly explain the reasons behind the required controls and have it [...]
Posted in Software Security Tags: GFI, Internet monitoring, Network Monitoring, System Monitoring 2 Comments » July 11th, 2011 Mourad Ben Lakhoua Depending on organizations structure and IT Infrastructure, the process for deploying new patches on operating systems can be complex and take considerable time. GFI Languard automates and simplifies this process, to make the transition quickly, almost without interruption to the company. Full installing or reinstalling any new update to software packages is like to repair [...]
June 10th, 2011 Mourad Ben Lakhoua Xplico is a project released under GPL that decodes packet captures (PCAP), extracting the likes of email content (POP, IMAP, and SMTP protocols), all HTTP content, VoIP calls (SIP), IM chats, FTP, TFTP, and many others. It can be used on platforms with an embedded ARM core processor or typical multi-core servers, making optimal use [...]
Posted in Open-Source, Tools Tags: Forensics, network discovery, Network Monitoring, open source, XPLICO 51 Comments » May 30th, 2011 Mourad Ben Lakhoua Lockheed Martin Corp., the U.S. government’s top information technology provider has suspended the email remote access to corporate application after discovering a network intrusion that is related to a major RSA attack. “As a result of the swift and deliberate actions taken to protect the network and increase IT security, our systems remain secure,” Jennifer [...]
May 28th, 2011 Mourad Ben Lakhoua Sniffers are very important tools for analyzing and capturing all packets in real time. If you want to understand what Malware change on the network level here you can find some useful sniffing utilities: Wireshark’s GUI Fantastic packet analyzer tool for Windows, Linux, Mac OS X, and various other platforms, at first this tool is [...]
Posted in Malwares, Network security, Open-Source Tags: Malware, Malware Research, Network Monitoring, open source, Snort, TCPDump, Wireshark 58 Comments »
