More Open Source Security episodes
Published 19 Jan 2026
Duration: 32:11
Suricata is an open-source, multi-mode network intrusion detection and prevention system that analyzes traffic, detects malicious activity, and generates detailed metadata for further analysis.
Josh discusses Suricata with Victor Julien, the founder and lead developer of the project. Victor explains the history of the project, its impact on c...
Suricata is an open-source network Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) that analyzes network traffic to detect malicious activity using signature-based rules. It generates detailed metadata, such as in JSON format, for further analysis and can operate in IDS, IPS, or Firewall modes, with the Firewall mode implementing a default drop policy for traffic control. Enterprises use Suricata for tasks such as network monitoring, threat detection, and log analysis, often integrating it with visualization and forensic tools like the ELK stack.
The project has been maintained by the Open Source Automation Foundation (OASF) for over 15 years and continues to evolve with improvements in usability, protocol support, and performance. It supports deep packet inspection and app-layer parsing for protocols like HTTP, DNS, and SMB, though encrypted traffic remains a challenge. Suricata also incorporates languages like Rust to enhance safety and performance, and it relies on community contributions for rule sets, feature enhancements, and ongoing development. The goal is to improve accessibility while maintaining strong security and performance capabilities.
30 Mar 2026 Open Source Security at scale with Michael Wisner
The Alpha Omega Project addresses open-source security by targeting leverage points like Node.js and Python ecosystems, advocating for systemic solutions, dedicated security roles, sustainable funding, and registry infrastructure improvements to counter fragmented practices and downstream risks.
23 Mar 2026 2026 State of the Software Supply Chain with Brian Fox
The State of the Software Supply Chain Report underscores explosive open source growth (10T annual downloads) paired with critical challenges like malware proliferation (1.2M malicious packages), unresolved vulnerabilities (65% unaddressed), infrastructure strain, AI's dual role in risk (hallucinations) and potential (MCP systems), and urgent needs for improved tools, policies, and cost management amid regulatory and scalability pressures.
16 Mar 2026 MCP and Agent security with Luke Hinds
The text explores AI agent security risks like prompt injection and open-source vulnerabilities, emphasizing the No-NO project's kernel-based sandboxing with a deny-by-default model, hardware enclaves, and Rust-driven efficiency, alongside layered defenses, restricted commands, and collaborative efforts to tackle evolving threats like social engineering and insecure coding practices.
9 Mar 2026 The State of OpenSSL for pyca/cryptography with Alex Gaynor and Paul Kehrer
OpenSSL 3.0 is criticized for increased complexity, performance issues, and insufficient progress in testing and memory safety, sparking debate over its adoption and the need for alternative cryptographic libraries.
2 Mar 2026 Rust coreutils with Sylvestre Ledru
A modern rewrite of Unix command-line tools using Rust aims for memory safety, performance, and maintainability while achieving high compatibility.