Blue Team

From consulting and strategy development to implementation and support, our comprehensive services can help your business thrive.

Wazuh

A "Security Guard" software for your servers, PCs, cloud, and network.
It watches everything, detects if something bad happens, and alerts you immediately.

Threat Detection (find attacks)
Visibility (see what’s happening on systems)
Compliance Monitoring (help with regulations like PCI-DSS, GDPR, HIPAA)
Incident Response (react to security events)

Virtual Machine

Module ID : B.1.1.01

Suricata

A super-smart "Network Traffic Inspector" that watches your internet traffic and alerts or blocks bad stuff.

Detect intrusions (IDS)
Prevent attacks (IPS)
Monitor network traffic (NSM)

Virtual Machine

Module ID : B.1.2.01

Zeek (Bro)

A "Network Security Detective" that watches all your traffic and writes detailed reports about everything.

Network Traffic Analysis
Protocol Parsing
Security Event Logging
Threat Hunting
Behavioral Analysis
Custom Scripting

Virtual Machine

Module ID : B.1.3.01

File2Ban

A "Login Guardian" that watches for bad behavior and blocks attackers automatically.

Brute-force Protection
Ban Suspicious IPs
Log Monitoring
Customizable Rules
Email Notifications
Temporary or Permanent Bans

Virtual Machine

Module ID : B.1.4.01

Auditd / Sysmon

It monitors and records all important security events on a Linux system — at the kernel level.

"Security Black Box Recorder" for Linux systems

System Call Auditing
File Access Monitoring
User Activity Logging
Rule-based Monitoring
Tamper Detection
Compliance Reporting

Virtual Machine

Module ID : B.1.5.01

Kibana (ELK)

A powerful dashboard tool that turns raw cybersecurity logs into interactive visualizations, helping analysts quickly detect and investigate threats.

Dashboards
Search & Explore
Alerts
Visualizations
SIEM Module
Reporting

Virtual Machine

Module ID : B.1.6.01

Kismet

A "Wireless Spy Tool" that listens to all Wi-Fi signals around you — even if you don't connect to them — and analyzes them for security monitoring or attack detection.

Wi-Fi Network Detection
Packet Capture
Device Tracking
Intrusion Detection
Bluetooth/Other Protocols
Passive Operation

Virtual Machine

Module ID : B.1.7.01

TheHive + Cortex

TheHive = "Your team's incident case manager."

Cortex = "Your team's automatic threat analyzer and action taker."

Together = "Fast, intelligent, automated cybersecurity investigations."

Incident Management
Collaboration
Threat Intelligence Enrichment
Automated Actions
API Access
Alert Ingestion

Virtual Machine

Module ID : B.1.8.01

Blue Team

Wazuh

A "Security Guard" software for your servers, PCs, cloud, and network.
It watches everything, detects if something bad happens, and alerts you immediately.

Suricata

A super-smart "Network Traffic Inspector" that watches your internet traffic and alerts or blocks bad stuff.

Zeek (Bro)

A "Network Security Detective" that watches all your traffic and writes detailed reports about everything.

File2Ban

A "Login Guardian" that watches for bad behavior and blocks attackers automatically.

Auditd / Sysmon

It monitors and records all important security events on a Linux system — at the kernel level.

"Security Black Box Recorder" for Linux systems

Kibana (ELK)

A powerful dashboard tool that turns raw cybersecurity logs into interactive visualizations, helping analysts quickly detect and investigate threats.

Kismet

A "Wireless Spy Tool" that listens to all Wi-Fi signals around you — even if you don't connect to them — and analyzes them for security monitoring or attack detection.

TheHive + Cortex

TheHive = "Your team's incident case manager."

Cortex = "Your team's automatic threat analyzer and action taker."

Together = "Fast, intelligent, automated cybersecurity investigations."

pfSense Firewall (Community Edition)

OPNsense Firewall

Blue Team

Wazuh

A "Security Guard" software for your servers, PCs, cloud, and network.It watches everything, detects if something bad happens, and alerts you immediately.

Suricata

A super-smart "Network Traffic Inspector" that watches your internet traffic and alerts or blocks bad stuff.

Zeek (Bro)

A "Network Security Detective" that watches all your traffic and writes detailed reports about everything.

File2Ban

A "Login Guardian" that watches for bad behavior and blocks attackers automatically.

Auditd / Sysmon

It monitors and records all important security events on a Linux system — at the kernel level.

"Security Black Box Recorder" for Linux systems

Kibana (ELK)

A powerful dashboard tool that turns raw cybersecurity logs into interactive visualizations, helping analysts quickly detect and investigate threats.

Kismet

A "Wireless Spy Tool" that listens to all Wi-Fi signals around you — even if you don't connect to them — and analyzes them for security monitoring or attack detection.

TheHive + Cortex

TheHive = "Your team's incident case manager."

Cortex = "Your team's automatic threat analyzer and action taker."

Together = "Fast, intelligent, automated cybersecurity investigations."

pfSense Firewall (Community Edition)

OPNsense Firewall

A "Security Guard" software for your servers, PCs, cloud, and network.
It watches everything, detects if something bad happens, and alerts you immediately.