Archives: Events

Views Navigation

Event Views Navigation



Boston Marriott Copley Place 110 Huntington Avenue, Boston, MA

Now, more than ever, we can't wait to see everyone back at the 6th SuriCon! October 20 - 22, 2021 in historic Boston, MA Join us for 3 days of world-class talks, Suricata development brainstorming, and community. But don't delay, SuriCon has sold out every year! REMINDER: All SuriCon attendees are eligible to receive 20% off Suricata […]

TROOPERS21: Intrusion Analysis and Threat Hunting with Open Source Tools

Join Suricata developers Peter Manev, Josh Stroschein, & Eric Leblond on November 03-04, 2021. TROOPERS21 takes place from October 18 to November 05, 2021. Click here for a course description. Click here to purchase tickets. All trainings take place online, starting at 9:00 AM German Time and end around 5:30 PM.

Webinar – Finding and Triaging Unknown Threats

In this webinar we're going to break from our normal "presentation" mode and instead, provide a back and forth discussion around finding and identifying new threats. Through a live demonstration, we will cover how to find new threats, how we identify important information and ways to categorize the malware family it belongs to. This session […]

SWFLSec Suricata 101 Presentation


Here's your chance to attend a Suricata 101 training led by OISF developers Shivani Bhardwaj & Juliana Fajardini! With the increasing reliance on the internet for all businesses and transactions, the importance of monitoring the network has never been greater. In order to detect or prevent such attacks, network monitoring is of the utmost importance. […]

FloCon 2022: Intrusion Analysis & Threat Hunting with Open Source Tools

FloCon 2022 - Instructed by Dr. Josh Stroschein & Peter Manev!   Limited spots available on Day 1 & Day 2: Track III: Intrusion Analysis & Threat Hunting with Open Source Tools (Day 1) Track III: Intrusion Analysis & Threat Hunting with Open Source Tools (Day 2)   Click here to register for FloCon 2022 […]

IcedID Infection Activity: Traffic & Other Indicators with Brad Duncan

Register here About this event Also known as Bokbot, IcedID is one of many families of malware distributed through malicious spam. In this webinar, Brad reviews two email-based distribution campaigns regularly distributing IcedID since November 2021. He reviews recent examples of IcedID infection traffic and reveals indicators that can be identified through Suricata-based signatures. Many […]

WEBINAR – Contributing to Suricata: from test clean-ups to adding new features

Free registration & detailed event description here: Presented by the Women of Suricata & hosted by our 2021/2022 Outreachy interns Sam & Modupe. This course is a sequel to our 2020/2021 Outreachy intern-led webinar:  A Beginner's Guide to Adding New Features to Suricata

Hands-On Session – Get to Know Suricata Language Server with Eric Leblond

Writing signatures for Suricata and other intrusion detection systems (IDS) is considered by many to be a form of art. One of the main reasons is that the rule writer needs to start by examining a network trace to identify patterns that are representative to a threat/behavior without being too broad (to avoid false positives) […]

Hands-On Session: Detect Lateral Movement in Microsoft Environment with Suricata (Part 1)

Suricata is the world-renowned IDS / IPS and NSM engine. It is capable of generating a combined log stream from separate information elements, including network protocol events, alerts, PCAP files (full packet capture), and extracted files as it sniffs live network traffic or sits inline. Suricata produces over 25 different types of log data, including […]

Live Event with Pluralsight: Open-Source Security – Analyzing Network Traffic with Suricata

In today’s environment of reduced budgets, loss of talent, and more breaches than ever before, how do you stop the adversary before they are able to compromise your environment? In this livestream we’ll be talking with OISF’s own Josh Stroschein, and discussing the capabilities of Suricata, an open-source threat detection engine. Join us to hear […]

Webinar – Suricata Metadata Analysis and Threat Hunting with CrystalEye XDR

Suricata has the ability to output alerts, anomalies, metadata, file info and protocol-specific records through JSON EVE output. In this webinar, we’ll explore how we can use Suricata event data for threat detection and prevention by enriching, processing and logging EVE JSON output to MongoDB in real-time. We will also analyze threat hunting reports with […]