Script - Sinkhole communication feed
April 17, 2017
This script grabs the sinkhole_*.txt files from the Maltrail GitHub page and creates a single csv...
UPDATE: RSA Charge 2017 'Call for Speakers' Webinar Replay Now Available
April 17, 2017
Believe it or not, the RSA Charge 2017 event is only six months away, Oct. 17-19 in Dallas at...
Log your Bash history ?
April 12, 2017
Based on some recent events related to Equation Group, logging commandline history became a more...
Mikrotik RouterOS Firewall Parser (mikrotikfw)
April 11, 2017
MikroTik is a Latvian company which was founded in 1996 to develop routers and wireless ISP...
Reporting on IMDB
April 6, 2017
Recently RSA NetWitness (NW) added the ability to report on the IMDB component of the platform....
Integrate RSA NetWitness Incident Management with Todoist
April 5, 2017
This is not an RSA officially supported integration. This script will sync the incidents of a...
Feed Me! Cisco AMP ThreatGrid Intelligence Feeds
April 4, 2017
I'm sure you know that RSA Netwitness for Logs and Packets includes the ability to register for a...
Detecting Dreambot variants using RSA NetWitness
April 4, 2017
Ursnif, also known as Gozi and ISFB, is a banking Trojan that primarily targets English-speaking...
sa_backup - backup tool for Security Analytics 10.6
March 31, 2017
Since I no longer have access to my previous post sa_backup-1.0.9 - backup tool for Security...
Power your way to success with the RSA NetWitness Suite Navigator
March 31, 2017
This RSA NetWitness Suite Navigator Tool is part of an ongoing campaign by the RSA NetWitness...