From The Bottom of Information Technology
A well defended network and properly trained security professional has many opportunities of detecting and stopping malicious actors. Each layer of activity found in the Mitre ATT&CK Matrix is a chance for the malicious actor to trip an alarm. A malicious cyber attack only needs to be detected and stopped in one of the stages …
Offensive Security Community Manager Tjnull offered up a voucher for the OSCP PWK. For a chance to win the OSCP voucher, participants must download a VM from VulnHub, get root permissions on the VM, and submit the flag to a user in Discord. VulnHubLink: https://www.vulnhub.com/entry/infosec-prep-oscp,508/ Lets dig in an see what we can find. Reconnaissance …
Read More “OSCP-Voucher-Giveaway-VM – LXC/LXD method – Write-up”
This machine is rated easy and was released in February 2020. This machine is rating on the higher end of easy for both user and root. Reconnaissance Lets start by kicking off a NMAP scan running default scripts, version detection, saving outputs, maxing the verbosity, and scanning all TCP ports. One reason for maxing the …
Hack the Box retired Resolute this week. This machine is rated medium and was released in December 2019. Root looks to be much more difficult than user on this one. Let’s see what we can find. Reconnaissance To start things off I start a NMAP scan running default scripts, version detection, saving outputs, maxing the …
What is the PCNSA? The PCNSA stands for Palo Alto Networks Certified Network Security Administrator. This is a mid-level exam provided by Palo Alto that covers the following topics: Security Platform and Architecture Initial Configuration Interface Configuration Security and NAT Policies App-ID™ Content-ID™ URL Filtering Decryption WildFire™ User-ID™ GlobalProtect™ Site-to-Site VPN Monitoring and Reporting Active/Passive …
After installing my pfSense firewall a couple of months ago, I have been wanting to get a nice dashboard built in Splunk. I will be building on the Snort configuration found in my last blog reviewing the Netgate-1100. (See Here) In this blog I show how to install and configure the pfSense Splunk application “TA-pfSense” …
My family needed the ability to monitor and record key assets of their property with the cheapest solution possible. The project design, configuration, and installment was handed to me.
The weather is terrible and I have nothing planned, you know what that means…..CTF weekend!! Reviewed ctftime and seen a CTF I would be interested in called CODEGATE. CODEGATE has organized international hacking competitions since 2008 so this has to be good. Lets jump right in. Pre CTF Before any CTF I do the following: …
Disclosure: Some links contained within this post are affiliate links, meaning, I will earn a commission if you click through and make a purchase. Identified with “#AL:” I recently purchased Netgate’s entry level pfSense solution, the Netgate SG-1100. The Netgate SG-1100 is a small, but powerful network/security hardware device with the open source pfSense software. …
Recently, I have started tinkering with Splunk dashboards and thought about systems or applications I would want to monitor from a “single pane of glass”. OpenVPN is my first thought due to the importance and wide use in the community. My OpenVPN build is on a CentOS 7 VM, so I will be using the …