Security research, threat intelligence insights, and product updates.
SikkerGuard is getting a local web dashboard, a first-run setup wizard, and the architecture to pull threat intelligence from multiple sources, not just SikkerAPI. Here's what we're building and why.
SikkerGuard now supports user-managed blacklist files with CIDR range expansion, a persistent stats endpoint for dashboard integrations, and local SQLite tracking of blocked connections. Bring your own blocklists, monitor your firewall from any dashboard, and keep stats across restarts.
We're opening our attack session database in public beta. Browse and search real SSH commands, HTTP exploits, MySQL injections, Docker escapes, and more, captured by our globally distributed honeypot network. Every session is curated, annotated with behavioral analysis and matched attack primitives, and free to access.
We added three new alert types to the dashboard. Set up alerts for your IP addresses, service account usernames, or email addresses — get an hourly digest when they show up in attacks on our honeypot network.