OPNsense Reviews

Cuckoo Sandbox Reviews

OPNsense mentions (94)

• How to bypass public IP and NAT

  Firmware's like Asuswrt-Merlin or OpenWRT can support dynamic-dns, or you can do like I do and run something like OPNsense in an x86 VM with a NIC passed through, or buy an inexpensive firewall appliance (up to 500mbps/1gbps/10gbps). Source: 6 months ago

• Stop ISP from getting into my Router

  The easiest solution is to buy your own router, set it up, disable the router functionality on the Fritzbox 7590 and plug your router into it. It'll be cheaper and easier than a Cisco Firewall, but if you want to go the dedicated firewall route then I would recommenced OPNsense. Source: 6 months ago

• OpenBSD Innovations

  BSDs may not have a significant presence on desktops, but they're well known in the networking world for their reliability. They also were the foundation used to build OSes for specific applications. OpnSense and XigmaNAS, for example, are two excellent FreeBSD based applications aimed at firewalling/security and NAS/services. https://opnsense.org/ https://xigmanas.com/xnaswp/. - Source: Hacker News / 11 months ago

• Switches That You Actually Own

  For switches? OpenWrt supports a few models toward the lower end, and SONiC support a bunch at the higher-end datacenter ToR market, but none of these options are SME production-ready like Linux servers or OPNsense firewalls. Source: 12 months ago

• Having to pay postage to ship back a DoA product sucks from a customer perspective

  That’s a stupid policy, and it looks like one of my UDMs is defective. I’m an idiot for not just buying good quality open boxes and putting https://opnsense.org/ on them. 🤦🏻‍♂️. Source: 12 months ago

Cuckoo Sandbox mentions (18)

• How to analyze malicious PDF?

  You can detonate it into a VM running an instance of Cuckoo Sandbox. If you want to go the extra mile, you can dump the memory of said VM and analyse it with Volatility Framework. Also, if you want to quickly identify behavioural patterns in executable code, you can use Mandiant's CAPA tool (though idk if it works on .pdfs). Source: about 1 year ago

• "PDF".exe pwns my user, but how exactly?

  You should save a copy of the .exe, copy it into a VM running Cuckoo and get a report on exactly what the .exe does. Without this automated dissection, people are making educated guesses. They're probably right, but why not be certain? There is an online version too - https://cuckoosandbox.org. Source: about 1 year ago

• Exist a way, that can tell X file that I want to download not contain any malicious file?

  You could use a service like cuckoo to check links/files. Source: over 1 year ago

• Best practices for malware analysis and securing the environment you're testing in.

  I made my own lab in college using a series of VM's, A windows 10 machine that was packed with analysis tools, a kali listening machine (running inetsim or fakenet, I can't remember.) and I had remnux on another machine (which I ended up not really making use of, but it was there.) I used virtualbox and ran these VM's in an internal network, no internet access. Disabled all clipboard and file sharing after... Source: over 1 year ago

• Sandbox?

  Another option if you want to self-host is https://cuckoosandbox.org/ . Of note, it's currently an unmaintained project so issues may not receive support, but it is free. Source: over 1 year ago