Ensnare is packaged as a gem plugin for Ruby on Rails and was developed to allow configuring and deploying a basic malicious behavior detection and response scheme in less than ten minutes. Ensnare uses a combination of Honey Traps to entice malicious users, and a configurable suite of Trap Responses to confuse, allude, delay, or stop an attacker. Already heard about the tool and want to try it out? Do it! - Install the gem by adding it to your project's Gemfile: gem 'ensnare', :git => 'git@github.com:ahoernecke/Ensnare.git' - Install the gem: bundle install - Run the migrations for Ensnare: rake ensnare:install:migrations rake db:migrate - Enable parameter tampering for your application by changing the mass_assignment_sanitizer: vi config/environments/<ENVIRONMENT>.rb - Set config.active_record.mass_assignment_sanitizer to logger: config.active_record.mass_assignment_sanitizer = :logger - Enable Ensnare in your application_controller.rb file: vi app/controllers/application_controller.rb - Append the following filter below protect_from_forgery in your application_controller.rb file: before_filter :ensnare - Add the following to the end of your routes.rb file: mount Ensnare::Engine => "/ensnare", :a
A daemon for blocking USB keystroke injection devices on Linux systems
A set of Bro/Zeek scripts that detect ATT&CK-based adversarial activity and raise notices
A technique to associate applications with TLS parameters for identifying malware and vulnerable applications.
A tool for scanning networks, enumerating Siemens PLCs, and gathering detailed information about them.
Akamai Enterprise Application Access is a ZTNA solution that provides secure, identity-based access to private applications without exposing the network.
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.