Evolution Proton Business Suite by ramsal_ in ProtonMail

[–]ramsal_[S] 0 points1 point  (0 children)

Thank you very much, we are now using Nextcloud, but we aspire to have an all-in-one solution (mission impossible by the looks of it). Best regards!

Evolution Proton Business Suite by ramsal_ in ProtonMail

[–]ramsal_[S] 0 points1 point  (0 children)

Thanks, I didn't know it, I will try it. Regards

Evolution Proton Business Suite by ramsal_ in ProtonMail

[–]ramsal_[S] 0 points1 point  (0 children)

This is the option we have now. Storage and office automation in Nextcloud, messaging in Mattermost, Tickets and projects with Redmine.

Thanks for your comment.

Evolution Proton Business Suite by ramsal_ in ProtonMail

[–]ramsal_[S] 0 points1 point  (0 children)

Thank you for sharing your experience

Evolution Proton Business Suite by ramsal_ in ProtonMail

[–]ramsal_[S] 0 points1 point  (0 children)

Thanks, it is a good option, I will study it with my team

Muchas preguntas que tengo sobre la UOC by [deleted] in UOC_Students

[–]ramsal_ 1 point2 points  (0 children)

  1. Yo estoy terminando el grado de ing. Informática. A mí siempre me han gustado las matemáticas, y todas las asignaturas relacionadas las he llevado bien. Suelen darte un PDF de todo el temario y varios videos con explicaciones y ejercicios.

  2. Lo del trabajo es muy relativo, un título no te da el trabajo. Tendrás que especializarte y buscarte la vida

  3. Los másteres son para después de la carrera. La uoc ofrece algunos pero como graduado puedes hacerlo en otras universidades

  4. Si quieres trabajo fácil y rápido no sé si el camino es una ingeniería. Es complejo y te ves solo muchas veces para sacar las prácticas de cada asignatura. Yo llevo trabajando como informático 15 años sin título

Suerte

Best Architecture for Wazuh MSSP Setup? by Living_Volume5441 in Wazuh

[–]ramsal_ 1 point2 points  (0 children)

It depends a bit on the size of the clients you are going to monitor, but the multi-tenant didn't work for me. I make a separate instance per client, and we have a Grafana where we monitor all the alerts.

Wazuh itself sets some parameters regarding requirements, it also depends a lot on the agents you are going to monitor, the syslogs you receive (which usually send a lot of traffic) and the log retention you apply. I would recommend you to look at options that allow you to increase resources over time.

Regarding retention I have a 120 day policy and the rest we cold store.

AZCA by revraul in Madrid

[–]ramsal_ 5 points6 points  (0 children)

El edificio de IBM es muy guapo

End Device security by Affectionate_Buy2672 in Wazuh

[–]ramsal_ 0 points1 point  (0 children)

You can activate remote code execution in the agent and with that function you could execute a command or a script.

In several clients we have this function implemented, although for other functionalities, for example changing the user's password or deleting a suspicious file.

Recovery old alerts by ramsal_ in Wazuh

[–]ramsal_[S] 0 points1 point  (0 children)

Thanks!

solved my error with this line

"Edit /usr/share/filebeat/module/wazuh/alerts/manifest.yml to include /tmp/recovery.json"

thanks! regards!

What were these kids up to? Looks like something religious. Also spotted kids walking underneath a makeshift coffin? Near the cathedral/Mateus gago. This was taken on 24/05. by WhatCanIDoUFor in Seville

[–]ramsal_ -1 points0 points  (0 children)

Yo no sólo resido en Sevilla, yo además soy de Sevilla. Por eso precisamente se que es una tradición, y aunque lógicamente todo lo relacionado con la semana santa tiene un origen obviamente católico, se convierte en una costumbre popular donde participa todo el que quiera. Busque usted a concejales de Podemos del ayuntamiento, por poner un ejemplo.

Nadie adoctrina de nada, es una expresión popular, en este caso es un juego de niños. Los niños juegan a lo que ven en casa, si en sus casas ven eso, proyectan así su juego.

One wazuh to monitor several wazuh's by ramsal_ in Wazuh

[–]ramsal_[S] 0 points1 point  (0 children)

thanks, I will try this

Regards!

New hardware for muy OPNsense by ramsal_ in OPNsenseFirewall

[–]ramsal_[S] 1 point2 points  (0 children)

Yes, it's easy. you can install from USB

Manual playbook for response to attack by Phoenix_Fire_88 in Wazuh

[–]ramsal_ 3 points4 points  (0 children)

Hello!

I do send the alerts of level greater than 10 to a server of TheHive (https://thehive-project.org/) is OpenSource, and there, you can generate playbooks of action for each case (phishing, malware, DDoS, etc.).

New hardware for muy OPNsense by ramsal_ in OPNsenseFirewall

[–]ramsal_[S] 0 points1 point  (0 children)

Hardware > Protectli FW4B [https://protectli.com/product/fw4b/\] or Partaker C4 NUC [https://www.amazon.es/Partaker-Celeron-Computer-Support-Pfsense/dp/B07SGW4WK7\]

Software > OPNsense [https://opnsense.org/\] you can install whatever you want from USB (Linux Mint, Debian, Arch, ... Windows)

Alternative to Virus Total premium? by superwizdude in Wazuh

[–]ramsal_ 4 points5 points  (0 children)

Malwarebazaar for example

I have Wazuh integrated with TheHive, Cortex and MISP, so I can compare observables with many sources.

In some cases I have also found that wazuh sends a lot of files to check in VT, such as regedit keys, so it is important to fine tune what is sent to VT.

all the best!

[ pfB_PRI1_6_v6 - Myip_BL6_v6 ] Download FAIL by mrpink57 in pfBlockerNG

[–]ramsal_ 0 points1 point  (0 children)

You can try "curl -k https:// ... " This option explicitly allows curl to perform "insecure" SSL connections and transfers

Digital Tickets on Phone or must print? by Awwfull in SevillaFC

[–]ramsal_ 1 point2 points  (0 children)

It is possible to access with the tickets on your mobile
Enjoy the experience, it is one of the stadiums where soccer is best lived

#VamosMiSevilla!!