Tuesday, December 26, 2017
Tech Tip Tuesday - 2017 SANS Holiday Hack Challenge
Are you home for the holidays with nothing to do? Why not take the SANS Holiday Hack and compete for the Grand Prize, a free SANS Online Training course (normally priced around $5,000). Answers must be submitted before January 10, 2018 but the content will remain available well after. If this is your first SANS Holiday Hack, I would recommend checking out past challenges first. There’s a lot of open source intelligence on the Internets.
https://www.holidayhackchallenge.com/2017/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, December 5, 2017
Tech Tip Tuesday - Hour of Code
The Hour of Code is happening this week in conjunction with computer science education week. It gets bigger and better every year. This year they provide statistics to convey the impact they are having in the State of Hawaii. Are you one of the 2,219 registered teachers or one of the 91,561 registered students in Hawaii? #CSEdWeek #HourOfCode
https://code.org/advocacy/state-facts/HI.pdf
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, November 28, 2017
Tech Tip Tuesday - CTF Field Guide
If signed up, or are thinking about signing up, for the CampFIRE Cyber Security Challenge check out the Trail of Bits CTF Field Guide. In addition to finding other CTFs, it walks through the different types of challenges and provides training to ultimately help you win. How are you preparing for the CampFIRE?
https://trailofbits.github.io/ctf/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
CampFIRE,
CTF,
CyberHawaii,
detection,
forensics,
incident response,
Manoa,
Trail of Bits,
UH
Tuesday, November 21, 2017
Tech Tip Tuesday - CampFIRE Cyber Security Challenge
CyberHawaii, University of Hawai‘i, and State of Hawai‘i is hosting a jeopardy-style, Capture the Flag (CTF) event. This half-day, on-site event is free for security professionals and college students. Participants can play in a team of two or individually. CampFIRE CTF is primarily focused around incident response and contains challenges that are based on real-life attacks or inspired by day-to-day security tasks. Upon completion of the event, participants will have learned about tools and techniques to deal with actual cyber security threats.
http://www.hawaii.edu/infosec/campfire/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, November 14, 2017
Tech Tip Tuesday - Targeted Attack: The Game
Trend Micro has a “choose your own adventure” game that puts you in the Chief Information Officer’s (CIO’s) seat of a fictional company launching a new app. You are presented with multiple challenges and are responsible for the success or failure of the new endeavor. Not everyone aspires to be a CIO but understanding what problems look like at the C-level can help you communicate your challenges to leadership.
http://targetedattacks.trendmicro.com/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, November 7, 2017
Tech Tip Tuesday - How to Protect Your Identity, Personal Data and Property
Our friends at Pacific Center for Advanced Technical Training (PCATT) shared this resource from Tom’s Guide a couple of days ago. The “What to Do If…” section covers some common issues like ransomware and identity theft. It also lists some tips for protecting yourself. It’s the perfect link to send someone asks, “Hey! You do computer stuff. What do you recommend?”
https://www.tomsguide.com/us/protect-yourself,review-4379.html
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Thursday, November 2, 2017
Tech Tip Thursday - Risk
Over the past few days I saw many vendors at #AFCEATechNet Asia-Pacific and I realized that every product and service they offer is built to address one thing. Risk. The generally accepted risk equation is “Risk = Threat x Vulnerability x Impact” and different products take on different factors. A vendor that provides “real time threat intelligence” is focused on threats. The “vulnerability assessment” tools focus on the vulns. Other focus on maintaining “uptime” with “resilient networks” to reduce impact. This SANS article identifies Risk as one of the “Five Tenets of Cyber Security” but for me it all comes down to risk.
https://securingthehuman.sans.org/blog/2017/10/05/the-five-tenets-of-cyber-security/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
AFCEA,
AFCEA Hawaii,
impact,
risk,
SANS,
TechNet Asia-Pafici,
threat,
TNAP,
vendors,
vulnerabilities
Tuesday, October 24, 2017
Tech Tip Tuesday - Password Reuse
Troy Hunt is the Pokemaster of collecting credentials from security breaches. He put together a database of 4,792,153,725 email accounts associated with both known and undiscovered breaches. These accounts have passwords associated with them and the major risk is password reuse. If you use your email address (e.g. Chunkylover53@aol.com) and super complex password to register for a site that has been compromised, you might have used the same credentials for another site (e.g. email, banking, Amazon). Once the bad guys get a hold of your credentials they start checking other sites for access. Have I been pwned is a quick way to check if your email address is associated with stolen credentials. The site does not provide the password associated with the email but it does say what breach it was associated with. Whether you are pwned or not, the 24th day of National Cyber Security Awareness Month is a good reason to change your password. #CyberAware #CSAM #HCSAM
https://haveibeenpwned.com/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
breach,
CSAM,
CyberAware,
data breach,
haveibeenpwned,
HCSAM,
Pokemaster,
Troy Hunt
Tuesday, October 17, 2017
Tech Tip Tuesday - KRACK Attack
The latest vulnerability to sport it’s own logo and website is key reinstallation attacks (KRACKs). The attack breaks the security of the WPA2 wireless security protocol. What does this mean? If you configured your home or work wireless connection with WPA2 to keep nosey neighbors off your network, you need to reconsider the safety or confidentiality of your network. Patches are available for some of the devices so be sure to update your wireless routers and access points.
This attack does require someone to be close enough to your house to connect, so should be weary of people lingering outside your house with a laptop but that’s probably just good advice in general. #CyberAware
https://securingthehuman.sans.org/blog/2017/10/16/28748
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, October 3, 2017
Tech Tip Tuesday - Happy Cyber Security Awareness Month!
October is Cyber Security Awareness Month. The National Cyber Security Alliance has numerous resources available to keep you secure. Data breaches and supply chain attacks usually make their way into your news feeds but your home network security hits closer to home. The following link has a handful of suggestions. Can you think of other ways to secure your home network? #CyberAware
https://staysafeonline.org/stay-safe-online/securing-key-accounts-devices/securing-home-network/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Thursday, September 28, 2017
Tech Tip Thursday - Linux Checklist
A common strategy of successful CyberPatriot teams is the use of checklists. Checklists should be living documents that are continuously updated. This ensures repeatable success and reinforces lessons learned. This Linux checklist was made by CyberPatriot competitors in 2016. Use it, merge it, replace it, incorporate it with your existing Tactics Techniques and Procedures (TTPs).
https://github.com/Forty-Bot/linux-checklist/blob/master/README.md
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Thursday, September 21, 2017
Tech Tip Thursday - CCleaner Malware
Supply chain attacks are in the news again after CCleaner version 5.33 infected with malware. The affected version (5.33) was released on August 15, 2017 and was available up to September 12, 2017. The scariest part was that the software wasn’t a bootleg copy. It was signed with a legitimate certificate. CCleaner has since updated the product but as of a couple of days ago, there were over 730,000 users still using the infected version. If you use CCleaner (which is still a good product) please update it.
http://blog.talosintelligence.com/2017/09/avast-distributes-malware.html
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Thursday, September 14, 2017
Tech Tip Thursday - Equifax Breach
If you haven’t heard yet, Equifax unwilling shared 143 million Americans personally identifiable information (PII) (e.g. names, social security numbers, birth dates, etc) with some unidentified actors. You should assume that your information has been compromised.
If you are not planning on applying for loan or new credit cards then you should consider freezing your credit with all four major credit bureaus. The fees are normally $5-10 to add the freeze and another $5-10 to remove the freeze. Currently Equifax is waiving its freeze fee until November 21st. Brian Krebs put together a great Q&A and the comments are always entertaining.
https://krebsonsecurity.com/2017/09/the-equifax-breach-what-you-should-know/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, September 5, 2017
Tech Tip Tuesday - National Cyber League 2017 Fall Season
The National Cyber League Regular (NCL) Season runs from November 3-5, 2017. The Regular Season is the portion of the NCL where individuals compete on their own, without the assistance of others, to solve game challenges. The game challenges are aligned with preparatory exercises and allow participants to validate the knowledge and skills they are developing in the NCL Gymnasium.
https://www.nationalcyberleague.org/regular-seaso-fall
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, August 29, 2017
Tech Tip Tuesday - Cyber Security Awareness Week High School Forensics Challenge
The Tandon School of Engineering at NYU hosts the High School Forensics challenge annually. The Qualification Round of HSF runs September 22 - October 2, 2017 and is open to everyone. The Final Competition is November 9 - 11, 2017 and is only for high school students. Sign up now and take a look at their Cyber Forensics (CyFor) learning environment.
https://csaw.engineering.nyu.edu/hsf
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, August 22, 2017
Tech Tip Tuesday - FREE COMPUTERS… some restrictions apply
Hawaiian Hope has been doing amazing work for many years but their 2nd Birthday as a nonprofit is this Friday. To celebrate they are giving away 150 computers to families with children under 10. I expect them all find good homes pretty quickly.
If you are in the market for a new computer and your current machine has some life left, consider donating it to Hawaiian Hope. They are also in the middle of a $30,000 fundraising goal, so monetary donations are also welcomed. No money or computer to give, head down to the shop and help them get the computers ready for delivery.
http://www.hawaiianhope.org/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, August 15, 2017
Tech Tip Tuesday - Memorized Secret authenticators (aka Passwords)
NIST Special Publication 800-63B was recently updated. The biggest change is the focus on the ease of recollection and password length versus password complexity.
"It works because we are creating longer passwords that cryptographically are harder to break than the shorter ones, even with all those special character requirements,"
It’s a new approach and it should cut down on the password reset requests.
www.npr.org/sections/alltechconsidered/2017/08/14/543434808/forget-tough-passwords-new-guidelines-make-it-simple
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, August 8, 2017
Tech Tip Tuesday - Diary of a Security Noob
I’ve recently met with a lot of students and/or folks new to or wanting to get into cybersecurity. They all want to know how to get started. I’m working on some material to share but in the meantime this talk from TJ Toterhi at BSides Cleveland offers some great advice for everyone from newbies to seasoned professionals. Do you have any advice those breaking into the field?
http://www.irongeek.com/i.php?page=videos/bsidescleveland2017/bsides-cleveland-201-diary-of-a-security-noob-tj-toterhi
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Wednesday, August 2, 2017
Tech Tip Tuesday - Top 50 Infosec Blogs
An interview question I’ve used in the past is, “How do you stay current with cybersecurity news?”. There are a lot of generous people willing to share their time and knowledge with the community. Digital Guardian put together a list of 50 of them. Some of these blogs have spinoffs and most of them are available as a podcast. Which ones do you follow?
https://digitalguardian.com/blog/top-50-infosec-blogs-you-should-be-reading
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, July 25, 2017
Tech Tip Tuesday - 2017 Hawaii Cyber Challenge
The Hawaii Cyber Challenge is not a normal Hunger Games, kill or be killed, "Capture the Flag" (CTF). CTFs can be intimidating and there is an industry track for individuals out for blood, but there is also a mentorship track that pairs a student with a mentor. This free event, will be held on August 3 at Honolulu Community College. It includes a 1/2 day capture the flag (CTF) event (combined w/ a day conference). We hope to see you there!
https://live.optiv.com/profile/form/index.cfm?PKformID=0x283305e74
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Wednesday, July 19, 2017
Tech Tip Tuesday - SANS CyberStart
SANS CyberStart is a unique program that offers users a challenging environment to learn more about cybersecurity and the opportunity to tap into $650,000 in scholarships. The assessment challenges are available from now till July 28th and the full-scale program will run from August 1-28, 2017. It’s open to students 16 and older from seven states, to include Hawaii, and it’s FREE.
https://www.sans.org/cyberstart
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Friday, July 14, 2017
Tech Tip Tuesday - Patch Tuesday
Zero Days and exploits, with logos and theme songs make the major news outlets but viruses, trojans, ransomware, cyber warfare, etc usually exploit known vulnerabilities with publicly available patches. Microsoft provided a patch for the WannaCry vulnerability two months before it made headlines. Microsoft released security updates that address 54 vulnerabilities and Adobe released updates for at least three. Please do your part and practice good #cygiene. Patch today.
https://krebsonsecurity.com/2017/07/adobe-microsoft-push-critical-security-fixes-11/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
adobe,
cygiene,
Microsoft,
MS17-010,
Patch Tuesday,
ransomware,
TTT,
WannaCry
Thursday, July 6, 2017
Tech Tip Thursday - Ransomware Protection
The generally accepted recommendations for ransomware protection revolve around patching and backing up your computers, not opening suspicious emails, disabling macros and scripts from office products, etc. I was recently reminded of another technique specific to JavaScript attachments. Changing the default application for .JS files to notepad.exe will prevent code from executing without user intervention. It’s just another layer in the security onion/cake.
https://nakedsecurity.sophos.com/2016/04/26/ransomware-in-your-inbox-the-rise-of-malicious-javascript-attachments/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
email,
javascript,
notepad,
notpetya,
petya,
ransomware,
WannaCry
Tuesday, June 27, 2017
Tech Tip Tuesday - VPN Comparison
Are you looking for VPN solution? A VPN is a simple solution to help secure your data and personal information. Picking one can be a daunting task. Fortunately, ComapariTech put together a list that compares 20 products against 15 factors to help you make an informed decision.
https://www.comparitech.com/blog/vpn-privacy/best-vpns-privacy-and-anonymity/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, June 20, 2017
Tech Tip Tuesday - Protecting the Mr. Robot Vuln Hub Machine
In March we had TTT on Vuln Hub, a repository of vulnerable virtual machines for you to download and get your hacking on. This post from InGuardians looks at the problem from the blue/defensive perspective and provides mitigating actions to prevent the exploitation.
https://www.inguardians.com/2017/05/31/protecting-the-mr-robot-vuln-hub-machine-part-1-breaking-a-password-spray-with-ossec-active-response/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
hacking,
InGuardians,
Mr. Robot,
ossec,
USA,
VM,
Vuln Hub,
vulnerabilities
Tuesday, June 13, 2017
Tech Tip Tuesday - Cybersecurity Books
Staying current with cyber threats usually means following social media, reading blogs, or listening to podcasts but sometimes the best cybersecurity resources are found in books. This list was put together by 21 cybersecurity experts. Are your favorites included on this list?
https://heimdalsecurity.com/blog/best-cyber-security-books/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Thursday, June 8, 2017
Tech Tip Thursday - Building a vSphere 6.5 Home Lab
Yesterday, during our conversation on Bytemarks Café, the high cost of equipment was mentioned as a barrier to entry in cybersecurity. Here’s one possible solution. Depending on how you configure it, it’s going to run about $1,000, which is comparable to a Macbook or a fancy gaming computer. Contact us if you’re interested in going this route.
http://www.altaro.com/vmware/building-vsphere-6-x-home-lab/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipThursday.
Labels:
Bytemarks Cafe,
lab,
nuc,
shuttle,
Virtualization,
VM
Wednesday, May 31, 2017
Tech Tip Tuesday - CyberPatriot Exhibition Rounds
If you unable to attend one of the camps or just want to get a head start, you should start looking at the Exhibition Rounds. The images are available to teams that are registered in CyberPatriot X. Exhibition Round images are currently available to registered CyberPatriot X coaches. Students do not need to be registered in order to participate in an Exhibition Round, nor do team fees need to be paid. Talk to your coach to get a copy.
http://uscyberpatriot.org/competition/competition-timeline
If you have a #CyberPatriot Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, May 23, 2017
Tech Tip Tuesday - AFA CyberCamps in Hawaii
There are 15 CyberCamps planned for this summer across the State of Hawaii. CyberCamps are a great place for new students, teachers, and mentors to get started with the CyberPatriot National Youth Cyber Defense Competition. The 20 hour camp will cover cybersecurity principles, Windows and Linux security, and more. You will also have a Windows 7 and Ubuntu demonstration image to follow along and the camp concludes Mini-CyberPatriot competition. Camps are filling up fast. Sign up today!
http://www.cyberhui.org/cybercamps
If you have a #CyberPatriot Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tech Tip Tuesday - WannaCry Additional Prevention Advice
The WannaCry epidemic may be over but the copycats, or as I like to call them "#cryptocats", are just starting. Newly discovered malware, dubbed “EternalRocks”, leverages seven of the leaked “NSA tools”. WannaCry only used two. The #NoMoreRansom has some good prevention advice for everyone.
https://www.nomoreransom.org/prevention-advice.html
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, May 9, 2017
Tech Tip Tuesday - Security Onion
Here’s a long overdue post. Security Onion is a Network Security Monitoring (NSM) tool. It contains full packet capture, network/host intrusion detection systems (IDS), and powerful analysis tools all on one platform. If you follow the walkthrough you can go from downloading the image to analyzing packets in a couple of hours.
https://github.com/Security-Onion-Solutions/security-onion/wiki/IntroductionWalkthrough
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
analysis,
HIDS,
IDS,
NIDS,
NSM,
packet analysis,
security onion
Tuesday, May 2, 2017
Tech Tip Tuesday - Cisco Packet Tracer 7.0 Design Challenge
The Packet Tracer Challenge runs from April 17 to May 12, 2017. You are given a scenario and tasked to use Packet Tracer 7 to engineer a solution. The winner of the challenge will receive a $500 gift card. I am interested in seeing the creative solutions people come up with. Will we see your entry?
https://www.facebook.com/PacketTracerChallenge/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, April 25, 2017
Tech Tip Tuesday - Tcpreplay
Tcpreplay is a free tool that you can use to *drumroll*... replay network traffic. You can ask the Google to find you find sample PCAPs (from CTF competitions, forensics puzzles, etc) and replay them to train/familiarize yourself with what right/wrong looks like in your lab environment. It’s slightly safer than downloading malware for demonstration purposes.
https://n0where.net/edit-and-replay-network-traffic-tcpreplay/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, April 18, 2017
Tech Tip Tuesday – Homograph Attacks
This is straight out of Wikipedia. https://en.wikipedia.org/wiki/IDN_homograph_attack
“The internationalized domain name (IDN) homograph attack is a way a malicious party may deceive computer users about what remote system they are communicating with, by exploiting the fact that many different characters look alike, (i.e., they are homographs, hence the term for the attack). For example, a person frequenting citibank.com may be lured to click a link in which the Latin C is replaced with the Cyrillic С.”
This vulnerability coupled with convincing phishing campaign could easily dupe the savviest of users. Bad guys/gals can make it even more convincing by getting valid certificates for their domain. Chrome 59 is patched and Firefox has a workaround by not providing a user friendly way of reading IDNs.
https://www.xudongz.com/blog/2017/idn-phishing/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Wednesday, April 12, 2017
Tech Tip Tuesday - Protect Yourself from Your ISP
If you still have concerns over the new found rights of ISPs to sell or use your private data for their benefit, the Electronic Frontier Foundation (EFF) put together a list of measures you can take to keep your private information… private.
https://www.eff.org/deeplinks/2017/04/heres-how-protect-your-privacy-your-internet-service-provider
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, April 4, 2017
Tech Tip Tuesday – Just Say No Thank You
Who reads their EULA (end user licensing agreement) or any other privacy notice for services they use their services? Maybe we should before (or in addition to) installing a VPN and user TOR to browse. Your ISP should give you the ability to Opt Out of (Customer Proprietary Network Information) CPNI which they use to market communications-related services. They basically monitor you web traffic to customize what advertisements you receive. I’m not saying you shouldn’t share your information. I think you should just be aware of what you are implicitly agreeing to.
https://www.usatoday.com/story/tech/columnist/2017/04/02/take-these-5-steps-help-protect-your-privacy-online/99953034/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, March 28, 2017
Tech Tip Tuesday - Network Penetration Testing Checklist
There are many ways to perform a network penetration test. This checklist gets you started and even suggests some popular tools. Are these in your toolbox?
https://gbhackers.com/network-penetration-testing-checklist-examples/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, March 21, 2017
Tech Tip Tuesday – Cheat Sheet for Windows Machine Intrusion Detection
Is your Windows machine pwned? How do you know? Where do you start? This cheat sheet identifies seven areas to look at as a jumping off point. Happy hunting!
https://gbhackers.com/penetration-testing-cheat-sheet-windows-machine-intrusion-detection/
If you have a #CyberPatriot Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
cheat sheet,
forensics,
incident response,
intrusion,
IRP,
logs,
pwned,
Windows
Tuesday, March 14, 2017
Tech Tip Tuesday – Vuln Hub
Vuln Hub is a repository of vulnerable virtual machines for you to download and get your hacking on. There are varying levels of difficulty and some even have walkthroughs. The resources page is a great place to get started.
https://www.vulnhub.com/resources/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, March 7, 2017
Tech Tip Tuesday – Web Penetration Testing (XSS and XSRF)
Here’s a preview to the SANS SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques course. The on demand virtual course goes for $5,910, so it’s nice to get a sneak peek for you sign up. The author goes over the techniques, tools and procedures (TTPs) to combine exploits in cross-site scripting (XSS) and cross-site request forgery (XSRF) for greater effects.
https://pen-testing.sans.org/blog/2017/03/02/modern-web-application-penetration-testing-part-1-xss-and-xsrf-together/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
CSRF,
ethical hacker,
pentest,
SANS,
SANS642,
TTPs,
web pentest,
XSS
Tuesday, February 28, 2017
Tech Tip Tuesday – PacketTotal
Analyzing gigs of network packets isn’t your thing? Give PacketTotal a try. Simply upload you PCAP and PacketTotal will run your captured traffic against Bro and Suricata and then index your data with Elasticsearch to make searching easier. PacketTotal will extract artifacts, reconstruct connections and give you drill-down analysis to help you understand your traffic. This is a website on the Internet so be careful not to release any company secrets, PII, HIPPA, PCI, etc. You can also search through other PCAP submissions to get more comfortable with network packet analysis.
https://packettotal.com/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
Bro,
Elasticsearch,
HIPPA,
packet analysis,
PacketTotal,
pcap,
PCI,
PII,
Suricata
Tuesday, February 21, 2017
Tech Tip Tuesday – Do It Yourself Online Safety
CHAYN is an open-source project that leverages technology to empower women against violence and oppression so they can live happier and healthier lives but the information in their online safety guide is useful for everyone. They highlight the many digital traces you leave behind from different technologies and provide instructions to minimize that digital footprint.
http://chayn.co/safety/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, February 14, 2017
Tech Tip Tuesday – Microsoft Patch Tues… wait
Microsoft hit the pause button on Patch Tuesday. This is a big deal if you were hoping to patch the SMB version 3 vulnerability which allows attackers to “blue screen” fully patched Windows 10 and 8.1 machines. For now you should block SMB v3 traffic from leaving your network. This at least limits the attack surface to your local network.
https://www.kb.cert.org/vuls/id/867968
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Wednesday, February 8, 2017
Tech Tip Tuesday – Happy Safer Internet Day!
This year the focus is on how to be a better Netizen by creating positive posts online. Unfortunately, Google Drive isn’t giving away 2GB free for doing a security check up this year. You should still do it regularly. It only takes a couple of minutes. #SaferInternetDay #SID2017
http://www.tomshardware.com/news/google-celebrates-safer-internet-day,33600.html
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Tuesday, January 31, 2017
Tech Tip Tuesday – Evil Packet Analysis
Packet/network analysis tools are everywhere and everyone seems to think it will solve all your cyber security problems. It might but where do you start? This post asks and answers "What are the top 10 or so questions (what & why ask) you would ask yourself when looking at packets you suspect contain evil?"
https://isc.sans.edu/forums/diary/Packet+Analysis+Where+do+you+start/22001/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
cyber,
ISC,
network,
packet analysis,
SANS,
security,
Tech Tip Tuesday
Tuesday, January 24, 2017
Tech Tip Tuesday – Do You Know What Your Browser Says About You?
Your browser shares a lot of information with every site you visit on the Internet. Using a proxy is one method to provide some anonymity, although I wouldn’t recommend using it to bypass your company or schools firewall.
http://searchsecurity.techtarget.com/feature/Hacking-Web-Intelligence
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Friday, January 13, 2017
Tech Tip Thursday – Top 10 Exploited Vulnerabilities Targeted by Exploit Kits
Exploit kits greatly reduce the barriers for entry for hackers. Hackers no longer need deep understanding of vulnerabilities and how to exploit them. They just click their way through to pwnage with canned attacks. The most common vulnerabilities of 2016 were found in Adobe Flash, Internet Explorer, and Silverlight. Now would be a good time to check your systems.
http://resources.infosecinstitute.com/most-exploited-vulnerabilities-by-whom-when-and-how/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Labels:
adobe,
adobe flash,
EK,
Exploit kit,
Internet Explorer,
pwn,
pwnage,
pwned,
silverlight,
TTT,
vulnerabilities
Thursday, January 5, 2017
Tech Tip Thursday - How to Remove Ransomware From Your LG TV
Yes, this is a very specific TTT and no, it hasn’t happened to me. It is a good indicator of how pervasive ransomware has become. In this case the TV’s owner downloaded an app to watch a movie. During the movie the screen froze and after a reboot, the TV loaded the Flocker ransomware. Fortunately, a simple factory reset will let resume your Netflix binging but it’s an important lesson to practice safe computing… on your TV.
https://www.grahamcluley.com/remove-ransomware-lg-smart-tv/
If you have a Tech Tip you want to share, send them to info@cyberhui.org and we'll get them out next #TechTipTuesday.
Subscribe to:
Posts (Atom)