Our team is excited to share the latest news and features of Slips, our behavioral-based machine learning intrusion detection system.
New Slips version v1.0.9 is here!
New Slips version v1.0.8 is here!
Use Case: UptimeRobot & Stratosphere IoT Laboratory
New Slips version v1.0.7 is here!
"LLM in the Shell: Generative Honeypots" to be presented at ESORICS 2023 Poster Session
We are happy to announce that our researcher, Muris Sladić, will present our latest research, “LLM in the Shell: Generative Honeypots”, at the upcoming ESORICS conference poster session in The Hague, Netherlands, on Monday, September 25, 2023. Whether you plan to attend the conference or want to learn more about this research, check out our paper. Our research proposes a novel use of Large Language Models (LLMs) for dynamic on-the-fly creation and generation of more engaging honeypot environments.
Stratosphere's Slips and the AI VPN to appear at Black Hat Europe 2023 Arsenal!
Generating Your Own Blocklists with the Stratosphere AIP Framework
In this blog post, we describe how to run AIP on a cloud instance server, to read from Zeek logs and generate your own blocklist feed of IPs to block. The blog is divided into five parts: first, what is AIP; second, we describe how to set up a new cloud server in Digital Ocean; third, how to configure the cloud server with Zeek running; fourth, how to prepare the environment and configurations for AIP to run; and fifth, how to run AIP and generate your own blocklists.
Google Summer of Code Updates from Week #9 (July 24th to July 28th)
Introducing Collectress: Consistent Threat Intelligence Feed Collection and Storage
Google Summer of Code Updates from Week #8 (July 17th to July 21th)
Google Summer of Code Updates from Week #7 (July 10th to July 14th)
Slips and the AI VPN presented at the 20th DIMVA Tool Arsenal in Hamburg, Germany
The Stratosphere Laboratory focus on applied research at the intersection of machine learning, cybersecurity and helping others. As part of our research and social commitment we develop free software tools that can help the community. In this blog we will recount our experience participating in the 2023 (DIMVA) Tool Arsenal with two of our tools: Slips and the AI VPN.
Google Summer of Code Updates from Week #6 (July 3rd to July 7th)
Google Summer of Code Updates from Week #5 (June 26th to June 30th, 2023)
Google Summer of Code Updates from Week #4 (June 19th to June 23th)
The World of Malicious IPs: Creating Blocklists from Honeypot Traffic.
A honeypot network is a security mechanism to detect and deflect potential cyber-attacks. It works by creating a decoy system that appears to be a valuable target for attackers. The honeypot is designed to lure attackers into interacting with it so that security researchers can monitor their activities and learn more about their tactics. By nature, the honeypots are hidden and do not form part of any production system. As they do not receive legitimate connections, all the interactions with the honeypots can be considered attacks.
