Learning, Sharing, Creating
The CIS Benchmarks are a powerful set of best practices to help your organization ensure its IT systems, software, networks, and cloud infrastructure are securely configured. Testing those configurations can…
There are two versions of CIS CSAT: Pro and Hosted. Here are some of their introuductions: CIS CSAT Pro: CIS CSAT Pro is the on-premises version of the tool and…
This post is to summarize some related information I found online when I was trying to put a python script into heroku to run.
Azure Monitor Collect, analyze, and act on telemetry data from your cloud and hybrid environments. Azure Monitor supports your operations at scale by helping you maximize the performance and availability…
Qualys Community Edition is a free version of the Qualys Cloud Platform designed for the security community. Discover IT assets. Manage vulnerabilities. Scan web apps. Inventory cloud assets.
Nessus is built from the ground-up with a deep understanding of how security practitioners work. Every feature in Nessus is designed to make vulnerability assessment simple, easy and intuitive. The…
Azure Active Directory (Azure AD) Multi-Factor Authentication helps safeguard access to data and applications, providing another layer of security by using a second form of authentication. Organizations can enable multifactor…
This post is going to show a basic initial configuration for Barracuda CloudGen Firewall F12.
In my lab environment, I am havng a Windows host which enabled Hyper-V, also installed VMWare workstation. It was very confusion when I tried to put both Hyper-V machines and…
The Threat Modeling Tool is a core element of the Microsoft Security Development Lifecycle (SDL). It allows software architects to identify and mitigate potential security issues early, when they are…
Gartner defines the privileged access management (PAM) market as tools that “discover, manage and govern privileged accounts on multiple systems and applications; control access to privileged accounts, including shared and…
There are many Website Load Testing applications, here are some I recently tested. This post is to simply record some screenshots and steps I were using them.