PID 4 listening on Port 80 or Port 12345
It was interesting during one of our Vulnerability Scanning. There are lots of machines listening on port 12345, and it does has lots of connection on it. Also, PID is…
Learning, Sharing, Creating
It was interesting during one of our Vulnerability Scanning. There are lots of machines listening on port 12345, and it does has lots of connection on it. Also, PID is…
This post is to show some quick steps for regular operation on my home CyberArk lab: On board CyberArk End User If you CyberArk has AD integrated, you will need…
Still Under Writing… A Threat and Risk Assessment analyzes a software or hardware system for vulnerabilities, examines potential threats associated with those vulnerabilities, and evaluates the resulting security risks. A…
Accessmgr account unlock / reset Log in to the CLI and run the following command: support reset-password accessmgr<N>|random. You can use <N> or random where <N> is a number in…
One of the challenges in configuring firewall policies is the fact that they rely on IP addresses and IP subnets rather than users or user groups. In particular for next…
Working on LogRhythm – Cloud SIEM project. LogRhythm’s SIEM solution combines enterprise log management, security analytics, user entity and behavioral analytics (UEBA), network traffic and behavioral analytics (NTBA) and security…
It is simple breakdown for a complicate firewall migration plan. It can be used to plan migration from existing firewalls to new Palo Alto Firewall. The tasks should be modified…
Enable Copy/Paste Function Between PSM RDP Sessions By default, the settings disables this function. You will not be able to copy / paste between PSM RDP sessions, although SSH sessions…
Symantec EDR (Endpoint Detection & Response, Previously ATP – Advanced Threat Protection) exposes advanced attacks with precision machine learning and global threat intelligence minimizing false positives and helps ensure high…
Recent during a vulnerability scan , there is RC4 cipher found using on SSL/TLS connection at port 3389. The solution in the Qualys report is not clear how to fix.…
Rsyslog is an Open Source logging program, which is the most popular logging mechanism in a huge number of Linux distributions. It’s also the default logging service in CentOS 7…
hdparm is a command line utility to set and view hardware parameters of hard disk drives. It can also be used as a simple benchmarking tool. Install hdparm CentOS #…