A Kubernetes Ingress Controller’s fake certificate is a security issue because it’s a self-signed certificate, which is not trusted by web browsers or other clients. This means that users will encounter certificate warnings or errors when trying to access your application, and the Ingress Controller is not providing secure communication. Here’s why it’s a problem: Not Trusted: Read More …
Tag: learn security
ACE – Access Control Entries
The Building Blocks of Permissions In the realm of Identity and Access Management, controlling who can access what is paramount. While Access Control Lists (ACLs) provide the structure for managing permissions, the individual permissions themselves are defined within Access Control Entries (ACEs). Understanding ACEs is crucial for IT students to grasp the fine-grained control that Read More …
Tools – BEAR: Simulating Advanced Persistent Threats for Cybersecurity Education
For aspiring and new information security professionals, gaining practical insight into real-world attack methodologies is paramount. One tool that offers a unique perspective into advanced threat simulation is “BEAR,” a project found on GitHub. Unlike typical vulnerability scanners or compliance tools, BEAR is a compilation of Command and Control (C2) scripts, payloads, and stagers explicitly Read More …
Hacker TV – How I Would Learn Cyber Security If I Could Start Over
How I Would Learn Cyber Security If I Could Start Over Want to learn all about cyber-security and become an ethical hacker? His thoughts on the basics and fundamentals is so right on. Networking, User or Desktop support, Server maintenance, whatever. I firmly believe that the best security people started in IT originally. Experience on Read More …
Hacker TV – Start Web App Pentesting
Looking to step up your web app pentesting and bug bounty skills? In this video, Alex from TCM Security walks you through some of the best FREE tools and resources to help you sharpen your AppSec knowledge and techniques. Whether you’re just starting out or looking to boost your skill set, these tools are must-haves!
ICMP – Internet Control Message Protocol
The Internet Control Message Protocol (ICMP) is a fundamental protocol used in the Internet Protocol (IP) suite. It is primarily designed for network devices to communicate error messages and operational information regarding the status of the network. While ICMP is not used for transmitting data like TCP (Transmission Control Protocol) or UDP (User Datagram Protocol), Read More …
AZ 900 – Part III – Microsoft Entra ID
Microsoft Entra ID Overview What is Microsoft Entra ID? Microsoft Entra ID, formerly known as Azure Active Directory (Azure AD), is a cloud-based identity and access management service provided by Microsoft. It enables organizations to manage user identities and access to resources securely. Key Features of Microsoft Entra ID Identity Management: User Lifecycle Management: Entra ID Read More …
AZ 900 – Part II – Architecture & Security II
Microsoft Azure is a powerful cloud computing platform that provides a wide range of services and resources for building, deploying, and managing applications and services through Microsoft-managed data centers. Understanding the structure of Azure is essential for effectively utilizing its capabilities. Key components of Azure’s organizational structure include subscriptions, management groups, resource groups, and resources. Read More …
ESM – Exposure Surface Management
Exposure Surface Management (ESM) aims to proactively identify, assess, and mitigate vulnerabilities across an organization’s digital assets, including those external to the traditional IT infrastructure, to reduce the risk of cyberattacks. Here’s a breakdown of what ESM looks like: Comprehensive Asset Inventory: ESM starts with a thorough inventory of all assets, both internal and external, Read More …
ASM – Attack Surface Management
Attack Surface Management (ASM) focuses on identifying, monitoring, and mitigating potential vulnerabilities and risks across an organization’s entire digital footprint, including both known and unknown assets, to reduce the potential attack surface. Here’s a more detailed explanation: Continuous Process: ASM is not a one-time task, but rather a continuous process of discovery, analysis, prioritization, remediation, Read More …