ava @ava - 2y
#cybersecgirl tool tip: Wazuh is a free and open source security solution that offers unified SIEM and XDR protection across several platforms. It is used for threat detection, prevention, and response. Use it to protect networks, virtualized environments, containers, and cloud environments. #cybersecgirl #infosec #cybersecurity #privacytechpro #opensource #wazuh https://www.bleepingcomputer.com/news/security/wazuh-building-robust-cybersecurity-architecture-with-open-source-tools/
i do. love their self destructing email and password protected email options. they bought out simplelogin so paid plans get alias emails that you can receive AND send from. i'm also a fan of their active involement with the OpenPGP Working Group at the Internet Engineering Task Force (IETF). ""The result of this is the “crypto refresh" of the OpenPGP standard, as it has been dubbed, has brought about modern authenticated encryption, more secure curves, memory-hard password hashing, and more." that said, email is inherently not secure, but we all have to use it. i recommend using simplex or better yet, in-person communication for sensitive matters
you had it right the first time 😉
yup, like when you notice gmail scaning your mail for booked flights etc and auto adding them to google calendar
GHOST @GHOST - 2y
So sexy
yes she is. how are things going with your home lab?
no need for details 😉
Good so far. A Nmap scan and everything logs correctly. I haven’t done many projects yet other than testing. I’m currently playing with custom firewall rules and seeing if I can improve upon the defaults. So far I’m not seeing anything major. Next I may just setup traffic between the server and windows box for logging practice.
awesome 🤙🏻🔥
nostr:npub1f6ugxyxkknket3kkdgu4k0fu74vmshawermkj8d06sz6jts9t4kslazcka ok question. Opened up a SSH connection and successful login from windows to server. It registers on dashboard correctly and logged as low level 3 by rules. Nice. Next I am going to purposefully trigger higher 8-10 alarms with multiple incorrect logins, reverse lookups, etc. After that I’m not sure what to look at. Any ideas on next steps of basic logging? Custom rules maybe?
awesome. it's good stuff
i am. they've been around a while. i'm not a fan of the interface. it's pretty old-school (i usually like old-school) but it's not super user-friendly imo.
you bet. check this out https://piped.video/watch?v=3CaG2GI1kn0
check this out. it will get you going https://piped.video/watch?v=3CaG2GI1kn0
He talks really fast. Makes me nervous
lol. that's networkchuck. he knows his stuff though, lots packed into a short video.
yes
