Видео

Can I run this whole exercise on WSL?

Does Ac Hunter supports Ubunto 24.4?

Красава, давай ще!))

Very nice tutorial, but in some linux diustro's screen isn't install automaticly.. if screen isnt install cronjob won't work.... I had that isseu and try to run rita-roll from /opt/rita/ and I've got the supprice screen wasn't installed... SO i've installed it and now it's running :) Recap to add perhaps in de newer version of this video: 1. install screen; 2. Dry run from /opt/rita/rita-roll

This new version is great! It would be great to see a video on how to filter out hordes of false positives and find needles in a very big haystack. Populating never_include_domains is arduous and never ending.

Hello. Great content! How is supossed to add the Threat Intel services/feeds? (Like VT or AbuseIPDB?). I saw there is a config file at "/etc/rita/threat_intel_feeds/DO_NOT_DELETE" but I don´t know which is format to integrate with those services... (requires API key)?

When I run Rita List, i'm not seeing the database. Is that because I need to wait a few hours?

Thank you Chris, for your time.

With Rita v5, would you advise against installing it on WSL?

Appreciated as usual...

Awesome, just today was reading an article about it!

Interesting, however, I installed rite v5 but I cant find beacon-sni beacon-conn and beacon-host in the folder. Should it come together or I need to get it from diff package? thank sman!

Awesome!!!!

Team, where can i download the pdf file regarding this training.

Lol this is awesome - I cant wait to sit in on the June class

This was great. I look forward to more like this.

great video with an in depth realistic security response i rly liked this

awesome stuff bill!

hi Chris, i miss this Training, will i still get the certificate if i do the recording ?

Yet another fantastic webinar, Chris! Thank you so much for sharing your knowledge with the community, truly inspirational! 🙏

What a bunch of dorks

Nice vid.

very clear, lucid explanations thanks Chris.

Oh man, the mcedit tool has never looked so cool Bill!

Excellent thank

Bill "1006 different projects" Stearns 😆

Thanks for this amazing session

great work team AC, the new UI is beautiful! y'all should be proud :)

Awesome as usual!

"Promosm" 😞

Will the product work in a AWS environment? A tap makes me think a data center. I maybe wrong but all work will be with ec2 instances. Just need more info.

This was an excellent presentation. Extremely helpful.

Yet another awesome webinar by Chris! Thank you so much to Active Countermeasures and Chris Brenton for this wonderful content 🙏

Great session! Very interesting method for monitoring network. Wish we could've touched a bit more on zeek, zeekctl, and other relevant CLI stuff. Thanks, Chris Brenton!

thanks, unfortunately I don't see the rolling database, only the examples

Really cool way of threat-hunting, would u say something like this could be created in Splunk with the right log sources?

Super cool presentation. 😀

Special thanks to Chris for going through with this October version despite being sick 🙏👏👏👏

Awesome!!!!

Watched the last one it was really good

Good Stuff😁😁

fun fact re: US driving on RHS instead of LHS: in the United States, large freight wagons driven by teams of horses would often have the driver sitting on the left rear horse, holding a whip in his right hand. This position allowed the driver to have a better view of the road if he was driving on the right side.

am loving ac-hunter it makes analysis easy with securityonion and pfsense. thanks guys for making this free for enthusiast.

Another gem of content. Perfect for someone new to the role such as myself!

It's been a while since I took the course... Nice improvement and might be attending next live session

Fantastic! Can't wait for the August training as well!

If I am using Option 4, how do I get to use Zeek?

second time i'm doing this and just signed up for the advanced training on 24+25 august. you are an incredible teacher chris - looking fwd to getting in deeper!

Great ,Thanks you for sharing 😊

will April's recording be posted here?