T-Pot integration to SISSDEN

Running the latest T-Pot as a vetted SISSDEN user? You can now contribute your data to SISSDEN!

For the last couple of years, T-Pot , the docker-based open source honeypot platform developed by our partner Deutsche Telekom (DTAG), evolved as one of the most successful honeypot platforms, not only due to its simple setup and low maintenance, but also because of the nice dashboards and investigation tools.

Setting up multiple honeypots, maintaining installations over time and eventually analyzing the data captured has always been a task which required expert knowledge and made the entry into the honeypot business quite challenging. Since 2015 when Deutsche Telekom introduced their honeypot platform T-Pot, the efforts for setting up honeypots, running and maintaining a multi-honeypot system have decreased significantly. Now everyone running a Debian-based virtual machine can transform their machine to a fully-fledged collection and analysis machine. The install on a blank system is as easy as installing Debian. Everything is automated to the maximum.

T-Pot offers numerous honeypot daemons running in parallel and reroutes the traffic captured on the network interface to the most suitable open source honeypots available. The data is processed and stored in a local ELK stack.

Continue reading

Kubernetes 1.13: Simplified Cluster Management with Kubeadm, Container Storage Interface (CSI), and CoreDNS as Default DNS are Now Generally Available

We’re pleased to announce the delivery of Kubernetes 1.13, our fourth and final release of 2018!

Kubernetes 1.13 has been one of the shortest releases to date at 10 weeks. This release continues to focus on stability and extensibility of Kubernetes with three major features graduating to general availability this cycle in the areas of Storage and Cluster Lifecycle. Notable features graduating in this release include: simplified cluster management with kubeadm, Container Storage Interface (CSI), and CoreDNS as the default DNS. Continue reading

How to Install Grafana Monitoring Tool on Ubuntu 18.04 LTS

On this page

Grafana is a free and open source enterprise-level monitoring and data visualization tool with support for Graphite, InfluxDB, Prometheus, Elasticsearch and many more databases. You can create your own dashboard to your own apps or infrastructure performance monitoring.

In this tutorial, we will explain how to install Grafana on Ubuntu 18.04 LTS (Bionic Beaver).

Continue reading

Continuous integration vs. continuous delivery vs. continuous deployment

CI and CD are two acronyms that are often mentioned when people talk about modern development practices. CI is straightforward and stands for continuous integration, a practice that focuses on making preparing a release easier. But CD can either mean continuous delivery or continuous deployment, and while those two practices have a lot in common, they also have a significant difference that can have critical consequences for a business.

We will see in this article what these three practices mean and what’s required to use them.

Continue reading

How To Install Elasticsearch, Logstash, and Kibana (Elastic Stack) on Ubuntu 18.04


The Elastic Stack — formerly known as the ELK Stack — is a collection of open-source software produced by Elastic which allows you to search, analyze, and visualize logs generated from any source in any format, a practice known as centralized logging. Centralized logging can be very useful when attempting to identify problems with your servers or applications, as it allows you to search through all of your logs in a single place. It’s also useful because it allows you to identify issues that span multiple servers by correlating their logs during a specific time frame.

The Elastic Stack has four main components:

  • Elasticsearch: a distributed RESTful search engine which stores all of the collected data.
  • Logstash: the data processing component of the Elastic Stack which sends incoming data to Elasticsearch.
  • Kibana: a web interface for searching and visualizing logs.
  • Beats: lightweight, single-purpose data shippers that can send data from hundreds or thousands of machines to either Logstash or Elasticsearch.

Continue reading