Netflow Installation

The Netflow project started in May for an Indianapolis University, the idea were to develop a method on how to capture and monitor network traffic. The school wanted information on how to visualize their network traffic to balance usage, improve network load and reduce bottlenecks on their network. The project goals are outline as follows, Meet…

Network Security Analyst: Combining Security Analytics

Wazuh is a host-based intrusion detection system that monitors network traffic and user activities through the use of agents which are installed on each workstation.  NetFlow is a network traffic analyzer that sits on the network to visualize network traffic flow.  The purpose of this project is to combine these analytical tools into a single source, which…

Fortune 500 Company Internship Project

This project involves a student working with a fortune 500 company’s cyber security team. Some of the activities that were completed during this project were threat categorization, and vulnerability assessment. In addition to this, the student was given the opportunity to attend meetings covering various topics such as; how to prevent data loss, insider threat…

Security System Monitoring with OSQuery

The project is about monitoring the system with OSQuery and it is for a university lab. OSQuery is a huge database that gives the user the ability to display information about the Operating system by writing SQL queries. A user can explore so many types of data about the system such as running processes, programs,…

Network Security Analyst

A University Lab needs to have it’s network mapped, analysed and patched.  The mapping will include a physical map using Visio to show where each piece of hardware is located, listing computer name, port numbers being used and the actual physical dimensions of the rooms.  The main tool to use for the analyzing of the…

Cybersecurity Internship

This project involves working with a Fortune 500 company’s cybersecurity team. It involves a lot of meetings that are about some of the current projects that they are currently working on like the Phishme campaigns, implementing two-factor authentication for vendors, maintaining user credentials on applications or requiring that the vendor do so. Aside from meetings…

Windows Server Update Services

In order to ensure greater security among the workstations in a pair of computer labs, we are creating a new Windows Server Update Services, or WSUS, server which will have WSUS installed on a Windows Server 2012 virtual machine. This will make for automatic and in sync updates for the programs that are most necessary…

SNORT

The SNORT Project is a continuation of building a network security monitoring server to monitor Rooms ET005 and 007 in the basement of the ET building. It will need to update the rules installed on the SNORT server to the current package from the Snort website. Any remaining rules created by last semester’s team will…

TOR Search Engine Using Apache Nutch

A local educational institution requested assistance with their TOR web crawler project. The objective was to create a database of malicious files found through visiting websites on The Onion Router network. The software used for this project was Apache Nutch, Elasticsearch, and Kibana. The overall problem was that Nutch wouldn’t send crawled data to its specified…

pfSense Firewall for Educational Institution

A local educational institution requested assistance with replacement of their current firewall for their small data center. The Living Lab team was tasked with configuring an open-source firewall known as “pfSense” and properly swapping out existing software with no interruptions to service. The team created VLANs that only communicate between specified networks for security. The…