Phases in a DevSecOps agile cycle

A general DevSecOps lifecycle can be outlined with key activities integrated into an Agile development framework. Here's a broad overview:

Tags:

DevSecOps

Security roles in a DevSecOps strategy

In a DevSecOps environment, several types of security professionals are typically involved to ensure a comprehensive approach to security. These may include:

Tags:

DevSecOps

Managing Windows firewall with PowerShell

To check the status of the Windows firewall with PowerShell, type the following:

Tags:

The most common BitLocker command-line commands

Make sure to execute these command from an Elevated Prompt!

Add a startup key as additional authentication method:

Tags:

Testing for CVE-2018-11784 - Apache Struts 2 Open Redirect vulnerability

On Wednesday 3 October 2018 the Apache Software Foundation has released information about an Open Redirect vulnerability in Apache Struts 2. The vulnerability received identifier CVE-2018-11784.

This page explains how you can test if your web application is vulnerable to this issue.

Tags:

Testing for impact of Infineon's vulnerable RSA generation (CVE-2017-15361)

A security vulnerability exists in the firmware of certain Infineon Trusted Platform Module (TPM) chipsets. The vulnerability weakens key strength. It is weakened so much that it is possible to derive the private key from the public key for RSA key pairs of up to 2048-bit.
This page contains a number of manners in which you can verify whether your computer contains an affected Infineon TPM chip that generates vulnerable RSA key pairs.

Tags:

How to run the WSUS Server Cleanup Wizard from command-line

When running the WSUS Server Cleanup Wizard from the MMC snap-in, it can occur that you receive the following WSUS database error:

Error: Database Error
An error occurred when trying to perform a database operation. This can happen if the database is very busy, if the database service is stopped, if the connection to the database is lost, of if the Post-Installation task is not completed successfully. Please contact your system administrator if the problem persists.

Click Reset Server Node to try to connect to the server again.

Tags:

Scanning for CVE-2017-0143 (EternalBlue) using nmap (MS17-010)

With both WannaCry and NotPetya using MS17-010 for propagation it is important to be able to detect servers which are vulnerable.
This vulnerability has been assigned CVE-ID CVE-2017-0143. The vulnerability is also often nicknamed EternalBlue.
This page explains how you can scan for it from a Windows machine using nmap.

Tags:

Scanning for CVE-2017-5638 using nmap

On March 6, 2017, Apache disclosed a vulnerability in the Jakarta multipart parser used in Apache Struts2 that could allow an attacker to execute commands remotely on the targeted system using a crafted Content-Type header value.
This vulnerability has been assigned CVE-ID CVE-2017-5638.
This page explains how you can scan for it from a Windows machine using nmap.

Tags:

How to use SHA-256, SHA-384, and SHA-512 hash functions in AutoIt

In the AutoIt scripting language it is possible to hash data using the _Crypt_HashData() function.

Tags:

AutoIt

Phases in a DevSecOps agile cycle

Tags:

Security roles in a DevSecOps strategy

Tags:

Managing Windows firewall with PowerShell

Tags:

The most common BitLocker command-line commands

Tags:

Testing for CVE-2018-11784 - Apache Struts 2 Open Redirect vulnerability

Tags:

Testing for impact of Infineon's vulnerable RSA generation (CVE-2017-15361)

Tags:

How to run the WSUS Server Cleanup Wizard from command-line

Tags:

Scanning for CVE-2017-0143 (EternalBlue) using nmap (MS17-010)

Tags:

Scanning for CVE-2017-5638 using nmap

Tags:

How to use SHA-256, SHA-384, and SHA-512 hash functions in AutoIt

Tags:

Pages

Tagcloud

Search form

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Pages

Tagcloud