David Cottingham presenting at ACSC2107

Airlock Co-Founder, David Cottingham, will be presenting at the Australian Cyber Security Centre on Wednesday the 15th of March at 2:30pm in the Bradman Theatrette.

Presentation Abstract:

There is a wealth of information in the security community today about what constitutes an indication of malicious activity within enterprise environments. Even if you are lucky enough to have a consensus regarding what you should be looking for each day, many organisations are simply not resourced to actively hunt and interpret activity within their environment. During this talk I will release a free Splunk application I have developed to make this challenge easier and also demonstrate some additional utilities I find invaluable.

Information on the new free Airlock Splunk App can be found here, and an updated version of the Airlock Whitelist Auditor can be found here.

Airlock v1.2 released with publisher support

Version 1.2 of Airlock includes the following new features:

– Publisher support for trusting signed executable and DLL files;
– Differential policies significantly reducing client network traffic; and
– Citrix VDI Environment support.

The addition of publisher support makes it even easier for customers to maintain application whitelists using Airlock.

David Cottingham, Co-Founder of Airlock, commented on the release “We are excited to release v1.2 of Airlock, making application whitelisting simple even in dynamically changing environments. Application Whitelisting simplicity and security is core to our mission at Airlock.”

Version 1.2 is now available for customers and partners in our customer portal.

Airlock Digital Add-on for Splunk released

Today marks the release of Airlock Digital’s new Add-on for Splunk. This Add-on enables simple and seamless Splunk integration, by providing pre-built data parsing and rich dashboards to view Airlock application whitelisting data.

This Add-on can be downloaded free of charge here: https://splunkbase.splunk.com/app/3346/

airlock

Airlock Digital releases free Application Whitelisting Audit Tool

At the ACSC Conference 2016 in Canberra as part of David Cottingham’s presentation of his “Top 35 Opsec Toolkit”, Airlock Digital launched a free AppLocker Auditor utility to allow administrators to review their AppLocker policies against the compliance requirements of the Australian Information Security Manual (ISM).

The AppLocker Auditor utility and presentation slides can be downloaded from this page. We will make the video available as soon as it is released to us.