Optimizing a website for search engines while maintaining high security and performance is a key part of web management. This post outlines the ongoing steps for enhancing SEO, improving user experience, and security. .htaccess Optimizations The .htaccess file configures site behavior to enhance SEO, improve performance, and strengthen security. Example Read more
Tailscale is a Zero Trust Network Access (ZTNA) solution that simplifies secure connectivity via a mesh VPN with Wireguard. It’s insanely easy to setup and get working. You get 3 devices with the free version. https://tailscale.com/pricing Setting Up Tailscale Inviting Users Configuring Access Controls Setting Up Applications and Services sudo Read more
Security breaches will continue to increase in sophistication. Microsegmentation addresses this by enabling granular controls over network traffic, enforcing intent based, workload aware policies at the application layer. This ensures that only the necessary communication between services can happen. Think least privilege/least access for network communications. In this post, I’ll Read more
Cribl’s pipeline capabilities make it a powerful tool for processing and enriching logs. In this post, we’ll explore how to apply advanced modifications to Zeek logs in Cribl. Each modification needs to be placed in individual Eval function blocks within your pipeline to avoid errors and ensure smooth processing. In Read more
Machine learning offers powerful tools for detecting anomalies in network traffic. This post includes technical details, sample logs, and Linux-based scripts to help you get started with anomaly detection using machine learning techniques. 1. Supervised Learning with Decision Trees Objective: Detect DDoS attacks by classifying normal vs. abnormal traffic using Read more
Introduction: Have you ever wanted to test how a system reacts, displays information, or handles attacks by pushing a bunch of PCAP files through a router or an Intrusion Detection and Prevention System? In this blog post, we’ll show you an easy and free method to accomplish this. Step 1: Read more
I started with acloud.guru AWS Certified Solutions Architect Associate course. https://acloudguru.com/course/aws-certified-solutions-architect-associate-saa-c02 If you get the pro subscription, you get access to labs without having to create your own AWS accounts. I think it’s 50 bucks a month, but you may be able to find this on Udemy for cheaper. AWS Read more
In today’s evolving threat landscape, large organizations must leverage the power of open-source security solutions to protect their networks. This post will explore a real-world example of how a security operations center (SOC) implemented several open-source tools and platforms to detect and respond to sophisticated threats. Deployment of Intrusion Detection Read more
Google doesn’t allow you to bridge their network box so you would have to double NAT and double port forward. Default: fiber_line –> fiber_to_ethernet_jack –> Google_Network_Box The Google Fiber network box powers the fiber to Ethernet jack via Power over Ethernet. You need a PoE injector unless you have a Read more
Threw together a pres on the easiest way to learn IPv6 I could come up with. IPv6_Pres Enjoy, if you’re into this type of stuff.
There are a number of things needed to stop ARP poisoning properly in a Cisco environment. DHCP snooping Trusted ports Dynamic ARP inspection A filter for static IPs DHCP snooping prevents rogue DHCP servers and is the groundwork for all this. It builds a database of bindings and specifies where Read more
I’ve been comparing SSL decryption services and devices, and Zscaler is much more than that. It’s an all-in-one Content Filtering, SSL decrypting, DLP, Bandwidth controlling(quota), IPS, Malware preventing(including sandbox) awesome cloud based solution. AND, It works with mobile devices even if they’re roaming! The solution consists of GRE tunnels out Read more
Here’s a pfSense setup with a HE tunnel, routed /64 on the inside, and a subnetted out /112 for the VPN. Inside users have dual stack and can surf v4 or v6. Outside users VPN in, and receive an IPv4 and v6 virtual IP. Once in they can route out Read more
Here’s how to configure a pfSense firewall to be a VPN client so IPv4 traffic always traverses the VPN. Build a VM at a cloud provider and configure it as an OpenVPN server. Using a self signed CA, cert, and TLS auth. For pfSense, take the following steps. Cat your Read more
The pfSense page here does a good job of explaining what router advertisements are and some of the settings, but I had to play around to make it work. If you have a flat uncomplicated network at home, the defaults will probably work fine. Clients would pull IPv6 + the default Read more
Here’s how to configure an RPI so that it auto connects to a VPN on boot via PoE. One could connect to it via WiFi and surf over the VPN, and no one will ever know. EVAR! This is for educational purposes only. I’m not responsible for your actions. Get Read more
Through my research I came across several scripts and howtos on chrooting, or running openvpn as nobody. They all had issues for me on Arch. Below is a very simple way to run openvpn as a normal non-root user. I have found that this is the most secure method of Read more
1. Install openvpn on OpenELEC: In Kodi select SYSTEM / File Manager Select Add Source / Select None Type http://fusion.tvaddons.ag and select Done Highlight the box underneath and type “fusion” Select OK Go back to your Home Screen and Select SYSTEM Select Add-Ons / Select Install from zip file / Read more
Was trying out the Kali Linux Evil ISO but found that I needed to create certs for the VPN. This used to be a huge pain in the ass, but through this I’ve found Easy-RSA, and it truly is easy. 1. Like in the evil ISO howto, copy /usr/share/easy-rsa/ somewhere.#cp Read more