fbpx

Details
Category: Cybersecurity PRISM
Though people may call it Vulnerability Scanning, but it for more than scanning. Because it must account for full-fledged 'assessment' of vulnerabilities in itself.

Read more: 5 Major Misconceptions About Vulnerability Assessment. What are Major Tools for Vulnerability...

Details
Category: Cybersecurity PRISM
Pivoting refers to the distinctive practice of using an instance, which is also called a ‘foothold’ or plant to make it possible for you to move around within the compromised network. This process involves accessing networks that you would normally not have access to by exploiting compromised computers.

Read more: What Is Pivoting in Cybersecurity?

Details
Category: Cybersecurity PRISM
Access attacks require some sort of intrusion capability. These can consist of anything as simple as gaining an account holder’s credentials to plugging foreign hardware directly into the network infrastructure. They usually happen when Reconnaissance Attacks have already performed by the hacker/attacker.

Read more: What are Access attacks ? What are Main Types of Access Attacks?

Details
Category: Cybersecurity PRISM
Cryptography is the science of writing in secret code and is an ancient art; the first documented use of cryptography in writing dates back to circa 1900 B.C. when an Egyptian scribe used nonstandard hieroglyphs in an inscription. Some experts argue that cryptography appeared spontaneously sometime after writing was invented, with applications ranging from diplomatic missives to wartime battle plans.

Read more: The Purpose Of CRYPTOGRAPHY

Details
Category: Cybersecurity PRISM

SSH (Secure Shell) keys are an access credential that is used in the SSH protocol.

Today, the SSH protocol is widely used to login remotely from one system into another, and its strong encryption makes it ideal to carry out tasks such as issuing remote commands and remotely managing network infrastructure and other vital system components.

Read more: SSH Keys - The Overlooked Cyber Security Attack Vector

Details
Category: Cybersecurity PRISM

What is Network Traffic Analysis (NTA)?

Network Traffic Analysis is about analyzing all the entities or devices that make up your network--whether they are managed or unmanaged. Here you collect or ingest all the telemetry and/or flow records (like NetFlow) from multiple network devices like routers, switches, and firewalls and determine what "normal" behavior for these devices looks like and how parts of your network are being accessed and by whom.

Read more: What is Network Traffic Analysis (NTA)? How does NTA improve your Security?

Details
Category: Cybersecurity PRISM
Server-side request forgery (also known as SSRF) is a web security vulnerability that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.
 

Read more: What is the Server-side request forgery (SSRF)?

Details
Category: Cybersecurity PRISM
The security architect can be defined as a person who is entrusted to manage and keep a watchful eye on the various security aspects of a company. He has to be very vigilant and carefully observe that no hacker, phisher or pharmer is able to damage the computer system and steal sensitive information from its database. Therefore, you need to be shrewd as an attacker to anticipate the techniques employed by hackers to perform their illegal tasks. The job is very challenging yet quite exciting.

Read more: What are the Security Architect Skills

Details
Category: Cybersecurity PRISM
There are many ways to expose, alter, disable, destroy, steal or gain unauthorized access to computer systems, infrastructure, networks, operating systems and IoT devices.
 
In general, attack vectors can be split into passive or active attacks:

Read more: What is the Most Overlooked Attack Vector?

Details
Category: Cybersecurity PRISM
Every security device has advantages and disadvantages and firewalls are no different.
 
If we applied strict defensive mechanisms into our network to protect it from breach, then it might be possible that even our legitimate communication could malfunction, or if we allow entire protocol communications into our network, then it can be easily hacked by malicious users. So, we should maintain a balance between strictly-coupled and loosely-coupled functionalities.

Read more: Firewalls - Advantages & Disadvantages

Details
Category: Cybersecurity PRISM
The underlying concept of both Containerization and Virtualization is finding an alternative to traditional infrastructure setup to execute processes with more flexibility, speed and efficiency, while using minimum resources.

Read more: Containerization vs. Virtualization

  1. The Evolution of DDos Reflectioin Amplificatioin Vectors - A Chronology
  2. 6 Stages of a Pen Testing Program
  3. What is Sandboxing? What are the Common Sandbox-evading Techniques? What can you do about them?
  4. What is Reverse Engineering of A Malware? What are Techniques and Tools?
  5. IDS vs IPS - How to Place Sensors Correctly for Intrusion Prevention Systems (IPS)
  6. A Review Checklist for Network Security Analysis
  7. Access control lists (ACLs)
  8. Bird's eye view of the key activities performed by Security Analyst
  9. Why is cyber security risk assessment so important? 5 Major Reasons for Conducting a Cyber/IT Risk Assessment
  10. Wi-Fi Protected Access version 3 - Major Security Features of WPA3

Page 23 of 27