Wednesday, August 4, 2021

Security Onion Solutions is looking for an experienced Golang developer!

Company Overview

We are the builders of Security Onion, a free Linux distribution for threat hunting, network security monitoring, and log management. It includes best-of-breed free and open tools such as Suricata, Zeek, Wazuh, Osquery, Elastic Stack, and many others. Security Onion Solutions offers appliances, professional services, cloud resources, and official training centered around the Security Onion platform. 

Founded in 2014 by Security Onion creator Doug Burks, Security Onion Solutions has a small team with a global reach and ethos rooted in the community. We offer a competitive benefits package, excellent work/life balance, and a culture built on communication and trust.

Position Overview

Security Onion Solutions is looking for a Senior Golang developer! The successful candidate will be responsible for contributing to the Security Onion project, a free and open threat-hunting and log analysis platform. The developer will also respond to related escalated Support issues and directly related Community Support items. This position is remote, full time, Monday - Friday. Infrequent travel (5%) may be required. 

Required Skills/Experience/Education
  • At least 2 years experience in writing enterprise-grade Go software
  • Extensive Linux experience, preferably Debian and/or CentOS flavors
  • Unit testing and integration testing experience
  • Front-end experience, including HTML, JavaScript, and CSS
  • Comprehensive understanding of networking and threading software principles
  • Understanding and use of secure software development practices

Preferred Skills/Experience/Education
  • Vue.js framework
  • Computer and network security
  • SaltStack or equivalent configuration management tools such as Ansible
  • Bachelor's degree or higher in Computer Science, Computer Engineering, Software Engineering, or closely related discipline

Requirements for all Security Onion Solutions Employees
  • Must be a US citizen and reside in the US
  • Ability to pass a background check and drug screen
  • Previous success working with remote teams 
  • Ability to self-manage time and objectives

How To Apply

If interested, please email your resume to:

golang-dev@securityonionsolutions.com

Quick Malware Analysis: malware-traffic-analysis.net pcap from 2021-06-01

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/06/01/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:















Tuesday, August 3, 2021

Quick Malware Analysis: malware-traffic-analysis.net pcap from 2021-06-02

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/06/02/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











Monday, August 2, 2021

Registration Now Open for Augusta Cyber Week!

Registration is now open for Augusta Cyber Week in Augusta GA from September 27, 2021 through October 2, 2021! This includes 4-day Security Onion training, Security Onion Conference, and BSidesAugusta. These are separate events, but if you sign up for the 4-day training class, you get a FREE non-transferable ticket to both Security Onion Conference and BSidesAugusta!

4-day Security Onion training:
https://bsidesaugusta.org/training/#SecurityOnion

Security Onion Conference 2021:
https://socaugusta2021.eventbrite.com/

BSidesAugusta:
https://bsidesaugusta.org/

Hope to see you there!

Security Onion Conference 2019


Quick Malware Analysis: malware-traffic-analysis.net pcap from 2021-06-03

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/06/03/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











Friday, July 30, 2021

Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-04

Thanks to Brad Duncan for sharing these pcaps!
https://www.malware-traffic-analysis.net/2021/06/04/index.html

We did a quick analysis of these pcaps on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











Thursday, July 29, 2021

Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-15

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/06/15/index.html

We did a quick analysis of the pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts: