Open Source Cyber Threat Intelligence for Absolute Beginners

TTTech Auto AG - Operngasse 17 Vienna, 1040 - View Map Vienna
Wed, Nov 16, 5:00 PM (CET)

About this event

This meetup is all about open source intelligent cyber threat detection. I am delighted that we were able to bring Klaus Agnoletti from CrowdSec to Vienna. It is our pleasure to welcome you to a 2 hours hands-on workshop to intelligent cyber threat detection. Important: Bring your own laptop!

As always, this is the online event invite. If you want to come to our on-premises event, please look at meetup.com: https://www.meetup.com/cloud-native-computing-vienna/events/289481286/


Content

You are going to install and configure CrowdSec, a FOSS IDS/IPS tool that reads log, detects attacks, and shares information about those attacks with other users in an anonymous way.

You will configure the NGINX bouncer, which mitigates threats based on information from the CrowdSec agent and the community. You'll also learn the basics of what CTI (Cyber Threat Intelligence) is, how it works and how it can help you protect your infrastructure.


Prerequisites

Intermediate Linux skills; know how to edit a file, and restart services. Knowledge of Docker is an advantage.


Agenda

* Introduction to CTI and CrowdSec

* Installing CrowdSec and NGINX bouncer

* Configuring NGINX bouncer with ReCAPTCHA remediation

* Working with CrowdSec cscli

* Loading cold logs into CrowdSec

* Visualizing using Metabase and CrowdSec Consoles

* CrowdSec console features


Who this workshop is for

Audience is everybody from your average self-hoster to professional sysadmins, devops and devsecops who have a bit of Linux experience and know their way around text editing, installing software from packages and restarting services.

Speaker

Moderator

  • Malte Fiala

    Malte Fiala

    Cloud Native Computing Vienna

    Organizer

    See Bio

When

Wednesday, Nov 16
5:00 PM - 7:30 PM (CET)

Where

TTTech Auto AG
Operngasse 17 Vienna1040

Organizer

  • Malte Fiala

    Malte Fiala

    Cloud Native Computing Vienna

    Director DevOps & Documentation at TTTech

    View Profile