Threat hunting with Yara: The red pill approach
Guest Post: Learn how to combine Yara with other tools to have full control over the condition validation process.
Category:
Tech matters
A first look at DNS over QUIC
Guest Post: Does DoQ outperform DoT and DoH? Results of the first study on DoQ response times.
DNS topics at IETF 113
Handling resolution failure, truncated responses, stateful hash-based DNSSEC signatures, and more.
How to properly interpret a traceroute or MTR
Guest Post: MTR is a useful tool for diagnosing packet loss.
Notes from the IEPG meeting at IETF 113
IPv6 extension headers, BGPsec crypto, RPKI beacons, and more.
DNSSEC algorithms for TLDs (and everyone else)
Guest Post: Has the time come to phase out 1,024-bit RSA from the DNSSEC ecosystem?
Threat hunting with Yara: Dealing with wildcard hexadecimal patterns
Guest Post: Learn how to use Yara’s native hexadecimal pattern definition features to create fast rules with fewer false positives and no alarming nested loops.
What’s going on with certificate revocation?
Does X.509 certificate revocation work as intended, or even work at all?
Identifying Autonomous Systems of state-owned Internet operators
Guest Post: Study notes 17% of the world’s IP addresses are originated by state-owned Autonomous Systems.
Resourcing in 2021
It’s been a busy period for the APNIC Services Team while adjusting to new challenges and complexity.