Headline
CVE-2023-35853: Stamus Labs | Stamus Networks
In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. This is addressed in 6.0.13 by disabling Lua unless allow-rules is true in the security lua configuration section.
A rich history of open source contribution
Stamus Networks has a long history of developing and supporting open source technologies. The company was founded by Éric Leblond and Peter Manev, two open source icons.
Éric and Peter are on the board of directors and executive team for the OISF (the governing body for Suricata), respectively. And they are active developers on the Suricata project, the widely-deployed open source intrusion detection and network security monitoring engine. The OISF is a non-profit organization created to build community and to support open source security technologies like Suricata.
In addition to our extensive contributions to Suricata itself, our team at Stamus Labs have six active projects underway.
- Since 2014, we have developed and maintained SELKS, the popular turnkey Suricata-based open source intrusion detection system (IDS), Network Security Monitor (NSM) and threat hunting system.
- In 2020, we introduced the Stamus App for Splunk which is a free and open source Splunk app for investigating and hunting in the IDS alert data and the protocol transaction logs generated by Suricata sensors. This Splunk app also provides complete access to data from Stamus Security Platform.
- Also in 2020, we introduced GopherCAP, an innovative PCAP manipulation application that provides accurate playback of extra large PCAP files directly from tar archives.
- In January 2022, we introduced the Suricata Language Server, a tool that adds syntax checking, performance guidance, and auto-completion to popular text editors for Suricata signature developers.
- In November 2022, we published the “Security Analyst’s Guide to Suricata” - the world’s first practical guide for unlocking the full potential of Suricata. Written for security operations center (SOC) analysts and threat hunters who use Suricata to gain insights into what is taking place on their networks, the book provides vital information on entry points and in-depth analysis on the most important Suricata features.
- Also, in November 2022, we introduced the free Suricata ruleset specifically focused on detecting lateral movement in Microsoft Windows environments
- In 2023, we introduced the Jupyter Playbooks for Suricata
NOTE: All open-source contributions from Stamus Networks are free: you may redistribute them and/or modify them under the terms of the GNU General Public License as published by the Free Software Foundation, version 3.0-or-later of the License. Review the terms of the license here:
https://www.stamus-networks.com/en-us/landing/gplv3-license