Trisul Blog

We’ve created a OpenIOC format XML file out of the report. We think we got everything except the semaphore indicators.

This release took a good three months but it was worth it. The highlight of this release is..

A quick introduction to the X-Drill (Cross Drill) tool in Trisul 3.0 .

We are working like crazy trying to get Trisul 3.0 out the door by mid-April. We are so excited by the advanced SSL/TLS analysis features in 3.0, we cant wait that long to share some details.

This is exciting stuff for a lot of “intel starved” enthusiasts like us. Atleast three types of indicators can be searched for by looking at past network traffic.

f you were to walk into a strange network, you would want to first see what the typical characteristics of the network are.

We can all agree that the repository of packets represents significant business value, otherwise we’d all be sharing our pcap dumps on github. Therefore a breach of this nature can hurt.

Hey all, we have a new Trisul update with some significant enhancements.

We just added support to Trisul for Alien Vaults Open Source IP Reputation.

If you are involved in forensics investigations, you have to pivot quite a bit between data types such as traffic, flows, and packets.