cipherdyne.org

Michael Rash, Security Researcher



Intrusion Detection and iptables    [Full View]

2013/09/30 - TCP Options and Detection of Masscan Port Scans
2013/08/22 - Design of a New 'xbits' Cross-Stream IDS Keyword
2013/07/23 - Crossing the Streams in IDS Signature Languages
2013/01/02 - Software Release - psad-2.2.1
2012/12/22 - Software Release - fwsnort-1.6.3
2009/07/29 - iptables Script Update - Logging and IPv6 Issues
2009/07/04 - Disrupting Conficker Worm Traffic with iptables and fwsnort
2009/05/30 - Software Release - fwsnort-1.0.6
2009/05/27 - Handling Escaped Semicolons in Snort Rules with fwsnort
2008/10/02 - ISSA Journal's Toolsmith on fwsnort and iptables IDS
2008/09/01 - Analyzing and Preventing s_loadenv DOCUMENT_ROOT Attacks
2008/08/07 - NAT and Checking for DNS Cache Poisoning Exploitability
2008/07/31 - Metasploit DNS Cache Poisoning and iptables Countermeasures
2008/07/14 - Mitigating DNS Cache Poisoning Attacks with iptables
2008/03/20 - IDS signature matching with iptables, psad, and fwsnort
2008/03/02 - Thwarting Distributed SSH Brute Force Attempts
2007/09/01 - iptables vs. Check Point Firewalls
2007/08/29 - Trailing Spaces and iptables LOG Prefixes
2007/04/21 - Enhancing Inline IPS Performance with Kernel String Matching
2007/02/21 - Pablo Neira Ayuso Added to Netfilter Core Team
2007/01/16 - Visualizing Honeynet Project iptables Log Data
2006/08/22 - Linux Kernel String Match Bugfix
2006/03/29 - Netfilter String Match 64-bit Bugfix
2005/11/20 - The Netfilter String Match Extension is back!
2003/10/15 - Article on Comparing Netfilter to Check Point FW-1