No larger team can work with one data source and one incident management system today(at least we don’t know such team yet). That’s why every team is engaged in the development of their own tools or at least their own upgrade for already existing tools.
IETF93 – prefetching and predictions – more cwrap – validating signatures
I/O improvements – documenting – validation – Happy Eyeballs
The Turris SSH honeypots are definitely not idle. There are currently 168 active honeypots that daily record 1000 to 2000 and on some days even up to 5000 SSH sessions containing at least one command.
A short tutorial on how to block DNS slow-drip attack with kresd.
iced coffee, testing library, starting DNSSEC validation, prefetching queries, namebenching