Here is what's happening at Stamus Networks and our community. Please check back to see whats new, or subscribe to the newsletter to receive notification right in your inbox.
INDIANAPOLIS, USA and PARIS, FRANCE, April 6, 2022 – Stamus Networks,a global provider of high-performance network-based threat detection and response systems, today announced the general availability of SELKS 7 – a major upgrade to the turnkey system based on the Suricata intrusion detection/prevention (IDS/IPS) and network security monitoring (NSM) system with a built-in network threat hunting console and graphical ruleset/threat intelligence feed manager.
SELKS is now available either as a portable Docker Compose package or as turnkey installation images (ISO files). Each option includes five key open-source components that comprise its name – Suricata, Elasticsearch, Logstash, Kibana and Scirius Community Edition (Suricata Management and Suricata Hunting from Stamus Networks). In addition, SELKS includes components from Arkime, EveBox, and Cyberchef which were added after the acronym was established.
INDIANAPOLIS, USA and PARIS, FRANCE, January 18, 2022 – Stamus Networks, a global provider of high-performance network threat detection and response systems, today announced the general availability of Suricata Language Server (SLS), a new open-source tool that streamlines rule writing for Suricata signature developers. The tool is a Language Server Protocol (LSP) implementation that provides real-time syntax checking, performance guidance, and auto-completion of Suricata IDS signatures while using popular source code editors.
“Signatures are the foundation of all Suricata-based network detection and response (NDR) solutions. But the subtleties of writing signatures for Suricata can be problematic for the threat researcher,” said Éric Leblond, co-founder and chief technology officer of Stamus Networks. “A well-written signature can detect advanced attacks and variants with negligible false positives, while a poorly-written signature can negatively impact system performance. So, we developed this tool to help streamline the rule-writing process and ensure the rules are optimized for performance.”
INDIANAPOLIS, USA and PARIS, FRANCE, October 19, 2021 – Stamus Networks, a global provider of high-performance network-based threat detection and response systems, today announced its extensive participation in this Suricon 2021, the annual conference dedicated to the Suricata open source network security engine. Two of the company’s founders and technical leaders, Chief Technology Officer, Éric Leblond and Chief Strategy Officer, Peter Manev will combine to present four technical sessions and one two-day advanced training workshop. All sessions are virtual.
“Suricata is embedded in our products and in our company’s DNA,” said Ken Gramley, CEO of Stamus Networks. “We are proud to support Suricon this year, both as sponsors and through the efforts of our team. Éric and Peter are two of the world’s most well-respected Suricata developers and experts, and we at Stamus Networks are thrilled to share their knowledge with the community.”
INDIANAPOLIS, USA and PARIS, FRANCE, June 10, 2021 – Stamus Networks, a global provider of high-performance network-based threat detection and response systems, today announced the availability of its latest software release, Upgrade 37 (U37). The new release, which includes updates to both Stamus Network Detection (ND) and Stamus Network Detection and Response (NDR), gives cyber defenders a substantial set of new features along with a number of performance enhancements.
“This new release is a direct response to valuable input from our incredibly engaged customers who share our passion for an open, transparent and useful network detection and response solution,” said Ken Gramley, CEO of Stamus Networks. “In addition to powerful new detection methods and response visualizations, we added capabilities specifically for the Suricata community and our managed security service provider (MSSP) partners.”
Presented by Peter Manev (Stamus Networks CSO), Eric Leblond (Stamus Networks CTO) & Josh Stroschein (Open Information Security Foundation)
In this workshop, students will learn how to maximize the visibility that Suricata can provide in your network. You will gain deep technical understanding and hands on experience with Suricata’s versatile arsenal of features and capabilities for a variety of deployment, usage and integration scenarios. Tuning and optimizing Suricata for threat/anomaly detection, file extraction, and/or protocol detection are critical for a successful deployment. You will also learn traditional and non-traditional tips, tricks and techniques to implement Suricata and its newest features, based on real-world deployment experiences to include cloud-based deployments.
This class also offers a unique opportunity to bring in-depth use cases, questions, and challenges directly to the Suricata team. By the end of this course you will be able to successfully design, deploy, implement, optimize and hunt with your high-performance Suricata deployment.
Suricata is known as a high-performance signature-based open source IDS/IPS. As with all signature based IDS, it produces millions of security events that are difficult to sort through. This talk will show how it is possible to leverage contextual metadata from network protocol monitoring and a thread-based approach to make intrusion detection (IDS) not only alive by extremely useful.
Suricata is a free and open-source, mature, fast, and robust network threat detection engine. The Suricata engine is capable of real-time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM), and offline PCAP processing.
Suricata inspects the network traffic using a powerful and extensive rules and signature language, and has powerful Lua scripting support for detection of complex threats. With standard input and output formats like YAML and JSON integrations with tools like existing SIEMs, Splunk, Logstash/Elasticsearch, Kibana, and other database become effortless.
Suricata's fast-paced community driven development focuses on security, usability, and efficiency.
The Suricata project and code are owned and supported by the Open Information Security Foundation (OISF), a non-profit foundation committed to ensuring Suricata's development and sustained success as an open source project.
TALLINN, ESTONIA, April 14, 2021 – Stamus Networks, a global provider of high-performance network-based threat detection and hunting systems, today announced its successful participation in Exercise Locked Shields, organized by the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) in Tallinn, Estonia.
Exercise Locked Shields is the largest and most complex international live-fire cyber defence exercise in the world. An annual event, it has been organized by the CCDCOE since 2010 and is a Red team (attackers) vs. Blue Team (defenders) exercise with teams formed by member nations and partners of CCDCOE. In 2021 there are 22 BTs participating with an average 40 experts in each team. The Teams take on the role of national cyber rapid reaction teams that are deployed to assist a fictional country in handling a large-scale cyber incident with all its implications.
Modern threats utilize the network for a variety of activities and the network continues to play a crucial role in the overall security monitoring of an organization. From delivering the malware to initially compromise an environment to bringing in additional tools and performing data exfiltration and command and control, all of this activity leaves traces over the network. In this webinar, we’ll explore how Suricata can go beyond generating alerts to show how you can use capabilities such as file identification and protocol parsing to gain the visibility to solve incidents quickly and more accurately by enabling context before, during, and after an event.
In this webinar, you will learn how you can go beyond alerts and learn how to use other Suricata capabilities to help detect and investigate modern threats.
INDIANAPOLIS, USA and PARIS, FRANCE, March 2, 2021 – Stamus Networks, a global provider of high-performance network-based threat detection and hunting systems, announced it has launched an expanded channel sales program to help partners and their customers accelerate their response to critical threats with solutions that uncover urgent and acute risk from network activity.
The company has hired Charlie Provenza to lead and grow the Stamus Networks channel sales program which offers partners a simple and flexible way to add the company’s network detection and response solutions to their portfolio in order to provide a differentiated offering to their customers.
Few organizations have the luxury of building their security technology stack from scratch. But most of us will replace all our controls, tools and systems over the course of the next five years. So, what can we learn from the experiences of a team who just finished building out a brand new security infrastructure and SOC for a managed security services business?
In this webinar, you will hear the key decision points around what to monitor, where to monitor, how to monitor and how to staff the SOC team that went into the creation of growing European managed detection and response (MDR) service provider, Hunt & Hackett. You will learn how you can make data-informed decisions to ensure you don't have detection blind spots.
You will learn the critical role network monitoring plays in their service offering, and understand why they believe the network does not lie. With the specific example of their network detection and response (NDR) infrastructure, you will learn what solutions the team selected and their no-nonsense approach to network monitoring. And you will see a live demonstration of their capabilities using real-world use cases.
INDIANAPOLIS, USA and PARIS, FRANCE, December 15, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced it now offers a powerful new capability to integrate its Scirius Security Platform with the world's leading security orchestration automation and response (SOAR), incident response, and enterprise messaging systems via its high-fidelity Scirius Threat outgoing webhooks. This capability is included in the latest U36 software release.
Join Stamus Networks for a webinar to introduce the new Splunk App for use with Scirius Security Platform (SSP). This webinar will be led by Éric Leblond, the lead developer of the app and a chief technology officer at Stamus Networks.
Through introductory material and live demonstrations, this webinar will highlight the power of advanced analytics, threat detection and threat hunting which can provide deep insight into your network activity.
WATCH THE VIDEO RECORDING >>
Join OISF and Stamus Networks for a webinar to introduce the new Splunk App for enterprise Suricata deployments. This webinar will be led by Eric Leblond, the lead developer of the app and a senior developer of Suricata.
Enterprises deploying multiple Suricata sensors need a way to consolidate the logs, events and alerts from those sensors into a “single pane of glass” to efficiently correlate, analyze, search, and gain insights into their overall enterprise network security posture.
WATCH THE VIDEO RECORDING >>
INDIANAPOLIS, USA and PARIS, FRANCE, October 13, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced the general availability of its application for Splunk. – enabling threat hunters, incident responders and other security practitioners who use Splunk to easily gain access to the data and insights provided by Scirius Security Platform (SSP) or Suricata to more effectively do their job. The Stamus Networks App for Splunk is available immediately on Splunkbase.
INDIANAPOLIS, USA and PARIS, FRANCE, September 23, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced it has hired Ronda Schwarzkopf to lead its financial operations, including strategic planning, budgeting, accounting, reporting, and auditing.
Schwarzkopf has over 15 years of experience in accounting and finance, with 8 years in leadership roles at start-up technology companies. Ronda most recently served as the Director of Finance for 250ok, which was acquired by Validity in 2020.
INDIANAPOLIS, USA and PARIS, FRANCE, September 15, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced it has hired Steve Patton to lead its sales organization in Europe, Middle East and Africa (EMEA).
Patton has more than 20 years of experience in business development, sales and customer relations for IT and network security businesses focused on enterprise and critical national infrastructure throughout Europe, Middle East, Africa and Asia.
INDIANAPOLIS, USA and PARIS, FRANCE, July 16, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced the general availability Scirius Threat Radar™, a new software module that sits atop its 3-tier network detection and response solution, Scirius Security Platform™.
The new capabilities completely redefine the network cyber threat hunting process from a traditional alert-driven model to an asset-centric approach, allowing the analyst to more clearly understand the threat impact and accelerate incident response.
INDIANAPOLIS, USA and PARIS, FRANCE, June 30, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced it has signed a reseller agreement with Leonard-McDowell. The agreement allows Leonard-McDowell to market Stamus Networks solutions throughout the United States.
“IT executives are seeking meaningful security insights that help them effectively mitigate risk to their organizations,” said James Lee, senior strategic advisor for Leonard-McDowell and former chief information officer (CIO). “After evaluating their solution, we believe Stamus Networks has developed an innovative approach to network detection and response that will benefit our clients, particularly those in high-risk industries.”
INDIANAPOLIS, USA and PARIS, FRANCE, June 16, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced the general availability of SELKS 6 – the turnkey system based on Suricata intrusion detection/prevention (IDS/IPS) and network security monitoring (NSM) system with a network threat hunting interface and graphical rule manager.
“We are excited to make SELKS 6 officially available,” said Peter Manev, co-founder and chief strategy officer of Stamus Networks. “This moment represents the culmination of efforts from many within the open source community, to whom we are very grateful. The new capabilities really highlight the power of threat hunting using IDS events correlated in real time with Suricata-generated metadata derived from live network traffic.”
INDIANAPOLIS, USA and PARIS, FRANCE, April 9, 2020 – Stamus Networks, a fast-growing cybersecurity software company, today announced it has secured critical seed financing in an oversubscribed $1.5 million round. Stamus Networks offers a unique cyber security solution that more clearly illuminates threats by correlating network traffic analysis and threat detection in real time. The system arms security teams with unprecedented visibility and meaningful insights into their organization’s security posture and helps them rapidly detect and respond to incidents.
VisionTech Angels and Elevate Ventures, both Indianapolis-based investment groups, co-led the investment round. In addition, several independent angel investors participated. Both VisionTech Angels and Elevate Ventures will appoint representatives to the company’s board of directors.