Stamus Networks Blog

We believe that sharing information is necessary to improve global security. The purpose of this blog is to share our experiences, perspectives and experiments.

Subscribe to our Blog

Blog /
Showing 52 results
of 52 items.
Reset All

Category

Recent Posts

Eric Leblond

Eric Leblond
Éric Leblond is the co-founder and chief technology officer (CTO) at Stamus Networks. He sits on the board of directors at Open Network Security Foundation (OISF). Éric has more than 15 years of experience as co-founder and technologist of cybersecurity software companies and is an active member of the security and open-source communities. He has worked on the development of Suricata – the open-source network threat detection engine – since 2009 and is part of the Netfilter Core team, responsible for the Linux kernel's firewall layer. Eric is a respected expert and speaker on all things network security. Éric resides in Escalles, France.
Find me on:
 

Recent Posts

Featured Image: Streamlining Suricata Development with NixOS and Custom Build Targets

Streamlining Suricata Development with NixOS and Custom Build Targets

Jul 31, 2025 Eric Leblond
Open Source, Network Detection and Response, Suricata, Network Security Monitoring, Clear NDR Community

tl;dr

This article explores the integration of NixOS, a declarative Linux distribution, with...

Read More
NEW with Suricata 8.0: Threat Context for IOC Matching

NEW with Suricata 8.0: Threat Context for IOC Matching

Jul 08, 2025 Eric Leblond
Open Source, Suricata, Unique to Clear NDR

Indicators of compromise (IOCs) have become a key component of the threat detection practice....

Read More
Production Ready Suricata Language Server (SLS) 1.0 is now Available

Production Ready Suricata Language Server (SLS) 1.0 is now Available

Jun 12, 2025 Eric Leblond
Open Source, Network Detection and Response, Suricata, Stamus Labs, Clear NDR Community, Clear NDR Enterprise

Suricata Language Server (SLS) has been available for more than 3 years, and it has always been...

Read More
2025 Prediction: The Rise of the Agentless Attack Surface by Eric Leblond

2025 Prediction: The Rise of the Agentless Attack Surface

Dec 19, 2024 Eric Leblond
Network Detection and Response, Endpoint Detection, Industry Perspective

NOTE: The following article was originally published 06 December 2024 on VMblog.com

Read More
The Path to Data Sovereignty: Key Considerations for Security Telemetry by Eric Leblond

The Path to Data Sovereignty: Key Considerations for Security Telemetry

Jun 27, 2024 Eric Leblond
Compliance, Stamus Security Platform, Industry Perspective

Most enterprise organizations gather extensive security data from their information (IT) and...

Read More

Adapting to Change: JA3 Fingerprints Fade as Browsers Embrace TLS Extension Randomization

Jan 10, 2024 Eric Leblond
Industry Perspective

Recent changes to the behavior of major browsers have rendered the popular JA3 fingerprinting...

Read More
Stamus Security Platform closes a Suricata supply chain attack vulnerability

Closing a Suricata Supply Chain Attack Vulnerability

Jun 15, 2023 Eric Leblond
SELKS, Suricata, Stamus Security Platform, CVE, Stamus Labs

On 15-June-2023 the OISF announced a new release of Suricata (6.0.13) which fixes a potential...

Read More
Accelerate Suricata Rule Writing with Suricata Language Server v0.9.0 by Éric Leblond

Accelerate Suricata Rule Writing with Suricata Language Server v0.9.0

Apr 28, 2023 Eric Leblond
Open Source, Suricata, IDS-IPS, Stamus Labs

Writing Suricata rules has never been easier or faster since the release of the Suricata Language...

Read More
Stamus-Suricata-Surprises-NSM-Enriched-Alerts

The Hidden Value of Suricata Detection Events: NSM-Enriched IDS Alerts

Mar 30, 2023 Eric Leblond
Threat Hunting, Suricata, Network Security Monitoring, IDS-IPS

If you use Suricata, then you are familiar with the way Suricata generates detection events —...

Read More
Analysis of TLS Cipher Suite Security in Stamus App for Splunk by Eric Leblond

Analysis of TLS Cipher Suite Security in Stamus App for Splunk

Nov 22, 2022 Eric Leblond
Open Source, Suricata, Splunk, Stamus Security Platform, Stamus Labs

The latest version (1.0.1) of  the Stamus App for Splunk adds TLS cipher suite analysis. Conducting...

Read More
Why We Wrote the Book on Suricata by Eric Leblond

Why We Wrote the Book on Suricata

Nov 15, 2022 Eric Leblond
Open Source, Suricata, Stamus Labs, Stamus News

As we celebrate the first week after launching our new book “The Security Analyst’s Guide to...

Read More
Stamus_Networks_FIC_2022_Eric_Leblond

Stamus Networks at Forum International de la Cybersécurité (FIC) 2022

May 18, 2022 Eric Leblond
Events

The International Cybersecurity Forum (FIC) is an annual event focused on the operational...

Read More
IMAGE: Stamus Networks at Botconf 2022

Stamus at Botconf 2022

Apr 25, 2022 Eric Leblond
Events

Botconf is an annual technical conference organized by the International botnets fighting alliance...

Read More
Blog: A Bold New Approach to Network Detection and Response

A Bold New Approach to Network Detection and Response

Apr 14, 2022 Eric Leblond
Network Detection and Response, Stamus Security Platform, Declarations of Compromise

Existing systems that aggregate network security alerts and metadata do not properly detect and...

Read More
Stamus Blog | Introducing Suricata Language Server: Real-time Rule Syntax Checking and Auto-completion

Introducing Suricata Language Server: Real-time Rule Syntax Checking and Auto-completion

Jan 18, 2022 Eric Leblond
Open Source, Suricata, IDS-IPS, Stamus Labs

Writing signatures for Suricata and other intrusion detection systems (IDS) is considered by many...

Read More
Stamus Networks | Suricata to the Log4j Rescue

Suricata to the Log4j Rescue

Dec 22, 2021 Eric Leblond
Suricata, IDS-IPS, CVE

Following the 10-December-2021 announcement of (CVE-2021-44228), Log4shell scanners have begun to...

Read More

Unleash Suricata Superpowers with a Splunk App @ Suricon

Oct 15, 2021 Eric Leblond
Suricata, Splunk, Events

At next week's Suricon 2021, I'll be sharing real world examples of how a new Splunk App can help...

Read More

Coming Soon in Suricata 7: Conditional PCAP @ Suricon

Oct 05, 2021 Eric Leblond
Suricata, Events

SuriCon is the annual open source technology community conference that highlights discussions and...

Read More
Suricata: The First 12 Years of Innovation

Suricata: The First 12 Years of Innovation

Jun 07, 2021 Eric Leblond
Open Source, Suricata, Network Security Monitoring, IDS-IPS

Suricata, the open source intrusion detection (IDS), intrusion prevention (IPS), and network...

Read More
Stamus Security Platform and TheHive

Stamus Security Platform meets TheHive Project

Jan 13, 2021 Eric Leblond
Network Detection and Response, Stamus Security Platform, Stamus News

Recently, Stamus Networks introduced outgoing webhook capabilities to its Stamus Security Platform....

Read More

Introducing the Stamus Networks App for Splunk®

Oct 13, 2020 Eric Leblond
Open Source, Suricata, Splunk, Stamus Labs

This week we announced the new Stamus Networks App for Splunk®. You can read our press release here...

Read More
Stamus NDR: the latest chapter in the quest towards the ultimate Network Security

Stamus NDR: the latest chapter in the quest towards the ultimate in Network Security

Jul 16, 2020 Eric Leblond
Network Detection and Response, Stamus Security Platform, Stamus News

Today we announced the general availability of Scirius Threat Radar (now called Stamus NDR), a...

Read More
Scirius Security Platform: the First 4 Chapters - by Éric Leblond

Scirius Security Platform: The First Chapters in the Quest

Jul 02, 2020 Eric Leblond
Network Detection and Response, Stamus Security Platform

Every great story begins with the first chapter. And with each new chapter the characters develop...

Read More

Whitepaper: Introduction to eBPF and XDP support in Suricata

Jul 16, 2019 Eric Leblond
Suricata

eBPF and XDP support is one of the latest evolutions of the Suricata engine’s performance...

Read More

Scirius Enterprise Edition, Release 29

Mar 20, 2018 Eric Leblond
Network Detection and Response, Stamus Security Platform

Following the release of Scirius Community Edition 2.0, Stamus Networks is happy to announce the...

Read More

Scirius 2.0 is here to get your Suricata easier, faster, stronger

Mar 14, 2018 Eric Leblond
SELKS, Open Source, Suricata, Stamus Security Platform

Stamus Networks is proud to announce the availability of Scirius Community Edition 2.0. This is the...

Read More

Suricata 4.0 and why it does matter

Jul 28, 2017 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Suricata 4.0 is out and this switch from 3.x to 4.x is not marketing driven because the changes are...

Read More

Scirius CE 1.2.0 is for IPS and collaboration

Mar 02, 2017 Eric Leblond
SELKS, Open Source, Suricata, Stamus Security Platform

Stamus Networks is proud to announce the availability of Scirius 1.2.0. This release of our...

Read More

Slides and video of "Suricata and eBPF" talk

Oct 11, 2016 Eric Leblond
Suricata, Events

Eric Leblond gave a talk entitled "The adventures of a Suricata in eBPF land" at netdev 1.2, the...

Read More

Suricata bypass feature

Sep 28, 2016 Eric Leblond
Suricata

Introduction

Stamus Networks was working on a new Suricata feature named bypass. It has just been...

Read More

Amsterdam 1.0, SELKS and docker

Jun 02, 2016 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Stamus Networks is proud to announce the availability of version 1.0, nicknamed "glace à la...

Read More

Scirius 1.1.6 brings new key features

Apr 06, 2016 Eric Leblond
SELKS, Open Source, Suricata

Stamus Networks is proud to announce the availability of Scirius 1.1.6. This new release brings...

Read More

Get info on suricata using JSON stats data

Jan 07, 2016 Eric Leblond
Suricata

Suricata stats in EVE JSON format

Suricata 3.0 will come with a lot of improvements on the output...

Read More

Amsterdam: SELKS & Docker using Compose

Sep 29, 2015 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Stamus Networks is proud to announce the availability of the first technology preview of Amsterdam.

Read More

Version 1.1 brings Scirius to a new level

Aug 12, 2015 Eric Leblond
SELKS, Open Source, Suricata

Stamus Networks team is proud to announce the availability of Scirius 1.1. This new release brings...

Read More

Looking at suricata JSON events on command line

May 18, 2015 Eric Leblond
Suricata

Suricata EVE JSON format is becoming the de-facto standard for this IDS. All type of events are now...

Read More

Scirius 1.0 is out

Apr 21, 2015 Eric Leblond
SELKS, Open Source, Suricata

Stamus Networks is proud to announce the availability of Scirius 1.0. This is the first stable...

Read More

Scirius-1.0rc3

Apr 18, 2015 Eric Leblond
Open Source

Stamus Networks is proud to announce the availability of the third release candidate of Scirius...

Read More

Run you own Suricata QA

Apr 07, 2015 Eric Leblond
Open Source, Suricata

Some words about PRscript

PRSCript is a script that run a series of builds and tests on a given...

Read More

Scirius-1.0rc2

Feb 12, 2015 Eric Leblond
Open Source

Stamus Networks is proud to announce the availability of the second release candidate of Scirius...

Read More

Scirius 1.0-rc1

Feb 02, 2015 Eric Leblond
Open Source

Stamus Networks is proud to announce the availability of version 1.0-rc1 of Scirius, our web...

Read More

Accuracy of Elasticsearch facets

Dec 04, 2014 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Introduction

Elasticsearch and Kibana are wonderful tools but as all tools you need to know their...

Read More

Scirius 1.0-beta1

Nov 13, 2014 Eric Leblond
Open Source

Stamus Networks is proud to announce the availability of version 1.0-beta1 of Scirius, our web...

Read More

Slides of SELKS lightning talk at hack.lu

Oct 23, 2014 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

After giving a talk about malware detection and suricata, Eric Leblond gave a lightning talk to...

Read More

SELKS privacy dashboard

Oct 20, 2014 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Introduction

SELKS 1.0 is featuring a privacy dashboard. This is a dashboard focusing on HTTP and...

Read More

Scirius v0.8

Sep 03, 2014 Eric Leblond
Open Source

Stamus Networks is proud to announce the availability of the version 0.8 of Scirius, the web...

Read More

A Suricata application for Splunk

Jul 30, 2014 Eric Leblond
Open Source, Suricata, Splunk, Stamus Labs

Thanks to the EVE JSON events and alerts format that appear in Suricata 2.0, it is now easy to...

Read More

SELKS 1.0 beta2 is available

Jun 18, 2014 Eric Leblond
SELKS, Open Source, Suricata, Stamus Labs

Stamus Networks is proud to announce the release of SELKS 1.0 beta2. This is the second public...

Read More

Announcing Scirius v0.3

May 20, 2014 Eric Leblond
Open Source

Stamus Networks is proud to announce the release 0.3 of Scirius, our web interface for Suricata...

Read More

Announcing Scirius v0.1

May 06, 2014 Eric Leblond
Open Source

Stamus Networks is proud to announce the first release of Scirius, its Suricata ruleset web...

Read More

Eric Leblond's talk at HES2014

Apr 28, 2014 Eric Leblond
Events

I've given a talk entitled "Suricata 2.0, Netfilter and the PRC" at the Hackito Ergo Sum conference.

Read More

Stamus Networks technical blog

Apr 06, 2014 Eric Leblond

This is the first blog post on Stamus Networks technical blog. You will find here posts focused on...

Read More

ABOUT STAMUS NETWORKS

Stamus Networks is the global leader in Suricata-based network security and the creator of the innovative Clear NDR™ system. Designed to close visibility gaps and reduce alert fatigue, Clear NDR transforms raw network traffic into actionable security insights with unmatched transparency, customization, and effectiveness. Trusted by leading financial institutions, government agencies, and participants in NATO’s largest cybersecurity exercises, Stamus Networks delivers proven, high-performance network detection and response solutions. Stamus empowers security teams – delivering clarity amidst complexity – with greater control, fewer false positives, faster response times, and a more responsive, open approach than legacy vendors.

Indianapolis, USA Paris, France

Privacy

© 2014-2025 Stamus Networks, Inc. All rights Reserved.