Free Ethical Hacking Course - Module 4 -Enumeration of Objective Systems
http://ift.tt/2ElZDZs

Submitted February 13, 2018 at 03:23AM by gburu
via reddit http://ift.tt/2EXGQVC

Forensic Readiness: Setting the Foundation for Cybersecurity
I’ve been involved in addressing many different cyberattacks in 2017 and early 2018, with some attacks being more successful than others. My involvement was usually in identifying the nature of the attack in a post mortem fashion or thwarting the advancement of an attack in progress. One common thread among all of them was the lack of forensic readiness by the organization that was attacked. So, what exactly is forensic readiness? Most organizations deploy some advanced hardware at the perimeter (such as firewall/application proxy) to control North-South traffic that is either generated from the local network heading to the Internet or vice versa. Other organizations adopt a more advanced model of installing an additional Intrusion Detection System on the network that monitors East-West traffic (traffic that moves between the users, servers, storage etc.). A logging system is installed to capture the events and then the assumption is that we can defend this echo system successfully. The reality, as many of you reading this blog understand, is that this type of installation is typical but inadequate. If something were to happen (user account hacked, USB device, malware traversing an email file or someone gaining access to a cloud tenancy, etc.), the logs provided by the firewall and the IDS device would not be sufficient to ascertain what happened let alone attempt to prosecute the case if the business was harmed. I’m going to walk you through some of the changes that I think are necessary for a strong foundation in cyber security and pertain only to the data collection portion of the forensic process. Identifying Sources of Data: • Local equipment such as firewalls, servers, local Active Directory controllers, wireless devices, etc. • Remote equipment: Similar to above but residing in a different location such as remote offices and data centers • Cloud providers: O365, Azure, AWS, Google, and other hosting providers whether hosting Infrastructure or Application as a Service Acquiring the data: • Set up an NTP server to synchronize all devices to ensure that incoming data has proper timing (for correlation purposes) • Configure the sources to send the logs to a centralized SIEM (Security Information and Event Management) system such as Splunk or AlienVault • Configure the sources to have the necessary settings for the logs in order to sufficiently identify an attack and/or present enough evidence to allow prosecution • Configure the cloud tenancies to adequately collect and forward the logs to the SIEM • Install Intrusion Detection Systems/Capabilities on your VPN tunnels and any other external connector with a partner or client and ensure that proper logging is enabled and forwarding to your SIEM Although data collection is a sub section of forensic readiness, it cannot be underestimated because in every incident I have participated in, the logs pertaining to the attack were never sufficient. Please feel free to comment on this blog and or contact me at uhoulila@crossrealms.com. Be on the lookout for my upcoming forensic toolkit, which addresses forensic readiness more comprehensively.

Submitted February 13, 2018 at 03:14AM by houlila
via reddit http://ift.tt/2G89q5Z

A safe os for daily use and crypto assets
Hi y'all, anybody here loving the DLT space? I do, it's exciting.Anyway, i'm running windows 10 on my PC and i've had it with this OS. Got weirdness going on every now and then and been trying to find those damn viruses or other malware, too scared to use my wallets, i need a better OS. I have just once tried Tails for a few days, besides that only windows.It's my daily PC that i use for browsing/watching/trading etc. I also want to run a Bitcoin lightning node if that is profitable AND mine anything profitable and popular. Specs: intel g3258 3.2ghz 4gb ram 120gb ssd 1tb hdd A single Ati 280x tri-xI've just had a look at linux Manjaro KDE from a usb stick, surprised that it looks and feels nice! I dont know if it has good enough safety and if it is suitable for running a lightning node/mining/keeping wallets/trading..When it comes to safety i'm new to most of the things i've read about such as tor, php, deep packet inspection, vpn and whatever else could work. But that's what i want and need with all the scamming in the cryptospace, sufficient safety.

Submitted February 13, 2018 at 04:10AM by Cryptocats2point0
via reddit http://ift.tt/2EnZZ6a

API Security Checklist
http://ift.tt/2CN1xlo

Submitted February 13, 2018 at 05:40AM by zinsi-
via reddit http://ift.tt/2sq2S0t

Kotlin and Java: How Hackers See Your Code
http://ift.tt/2Epb2Ms

Submitted February 13, 2018 at 08:20AM by numberbuzy
via reddit http://ift.tt/2G7zM8c

We need to continue the debate on the ethics and perils of publishing security research
http://ift.tt/2BOqX50

Submitted February 13, 2018 at 09:31AM by SuccessfulOperation
via reddit http://ift.tt/2BpbIyG

Looks like itunes india may have been hit by the cryptojacking malware to mine monero.
http://ift.tt/2sqEkEP

Submitted February 13, 2018 at 10:43AM by sojana
via reddit http://ift.tt/2sqia5H

Competent Event Security Services Company in Dubai, UAE
http://ift.tt/2CfXcpH

Submitted February 13, 2018 at 03:32PM by amberjhon215
via reddit http://ift.tt/2EpWyvN

Recon Brussels slides
http://ift.tt/2Cekz2V

Submitted February 13, 2018 at 04:06PM by sanderD
via reddit http://ift.tt/2ChuFQv

Linux hacked on to the Nintendo Switch thanks to CPU flaw
http://ift.tt/2G8Si01

Submitted February 13, 2018 at 04:39PM by Iot_Security
via reddit http://ift.tt/2EZEpSB

Consumers want more #IoT regulation
http://ift.tt/2EFDl8N

Submitted February 13, 2018 at 04:34PM by Iot_Security
via reddit http://ift.tt/2EiMkcj

Necurs Fuels Massive Valentine's Day Spam Campaign
http://ift.tt/2BTEDvD

Submitted February 13, 2018 at 05:42PM by CasperVPN
via reddit http://ift.tt/2EpIgqE

Is it Time to Add Entry Control Security Gates to Your Multi-Family Community?
http://ift.tt/2o1KSEo

Submitted February 13, 2018 at 05:41PM by Francegerona
via reddit http://ift.tt/2nWcoUA

Thieves are using regular people's names and identities to swindle the US government in a new scam that puts anyone at risk
http://ift.tt/2smQpuy

Submitted February 13, 2018 at 06:46PM by iliketechnews
via reddit http://ift.tt/2Gam9Fv

How to SPICE It Up And Gain That Funding For Your Security Operations.
http://ift.tt/2ElxaHk

Submitted February 13, 2018 at 06:41PM by Uminekoshi
via reddit http://ift.tt/2ChB0vk

Security In 5: Episode 173 - What Is Malicious Cryptomining And Why Is It Harmful For Your Business
http://ift.tt/2HbELpP

Submitted February 13, 2018 at 07:35PM by BinaryBlog
via reddit http://ift.tt/2Gcniwf

Left-to-right zero-day in Telegram
http://ift.tt/2EEWIys

Submitted February 13, 2018 at 07:45PM by RewardfulCopywriter
via reddit http://ift.tt/2o3LoBG

Winter Olympics attack details
http://ift.tt/2sowbAR

Submitted February 13, 2018 at 09:23PM by lormayna
via reddit http://ift.tt/2EBbhmR

Stalking with Citymapper routes
http://ift.tt/2sqCsfb

Submitted February 13, 2018 at 09:20PM by eth0izzle
via reddit http://ift.tt/2sqDbwV

New Satori Botnet Variant Enslaves Thousands of Dasan WiFi Routers
http://ift.tt/2G7HUpr

Submitted February 13, 2018 at 09:38PM by imr2017
via reddit http://ift.tt/2EqToIg

The Fitness of Mobile Health Security
http://ift.tt/2ChPmMp

Submitted February 13, 2018 at 09:21PM by Mi3Security
via reddit http://ift.tt/2Epu19H