Recon InfoSec

Geolocation via Pipelines in Graylog

Megan Roddie | 21 Aug 2018

To the delight of most Graylog users, geolocation is automatically built into the platform via the "GeoIP Resolver" plugin. All that is needed is a MaxMind database and you are ready to roll. However, there is a better way of going about geolocation that might be worth implementing…

Securing G Suite

Megan Roddie on cloud, security, gsuite | 19 Jul 2018

Guidance on securing your organization's G Suite environment…

GSuite DFIR - Part 1: Incident Response

Megan Roddie on cloud, dfir, gsuite, forensics, incident response | 26 Apr 2018

Part 1 of a three-part series on digital forensics and incident response in Google's GSuite.…

US-CERT TA18-106A for the Rest of Us!

Leo B on exploit, intel, us-cert | 25 Apr 2018

An easy-to-understand break down of TA18-106A.…

Meltdown and Spectre

Ron Phillips on exploit, vulnerability, spectre, meltdown | 16 Jan 2018

An executive summary on the Meltdown and Spectre vulnerabilities affecting computer processors all over the world.…