ibrahim – WindowsTechs.com

Can My University See What I Browse On My Laptop?

Posted on April 12, 2024 by ibrahim

I’m a bit paranoid, but I want to know if my university can see what I’m browsing while being on their proxy server:

Can they see what I search for, like on Google? (what websites I visit)
Can they see what I search for on different websi… Continue reading Can My University See What I Browse On My Laptop?→

Nmap needed to validate some some ports if they are open from user lan [on hold]

Posted on May 16, 2019 by ibrahim

Since Nessus and Rapid7 are hosted in a server with predefined rules to pass firewalls, Nmap validation from user LAN is needed to have more sight about what an attacker can see.

Continue reading Nmap needed to validate some some ports if they are open from user lan [on hold]→

Is there away to retrieve results (including found vulnerabilities) of a specific scan from one API call?

Posted on May 14, 2019 by ibrahim

Is there away to retrieve results (including found vulnerabilities) of a specific scan from one API call?
From InsightVm documentation, the GET scan API call returns only scan info with statistics of the found vulnerabilities… Continue reading Is there away to retrieve results (including found vulnerabilities) of a specific scan from one API call?→

is there an alternative way to automate the process of adding lookup attributes, when integrating cyberark with Rapid7 InsightVM?

Posted on May 7, 2019 by ibrahim

CyberArk integration with Rapid7 enables Rapid7 easily to run credentialed sans and dynamically assign credentials for authentication for multiples assets.
Looking up credentials in the CyberArk Vault can be performed in two … Continue reading is there an alternative way to automate the process of adding lookup attributes, when integrating cyberark with Rapid7 InsightVM?→

Nmap scanner after a credential scan or before credential scan?

Posted on April 24, 2019 by ibrahim

i’m developing a vulnerability management process, one phase of it is to validate scanner tools data. at the moment I’m doing automated discovery scan using Nessus (hosted in a server not accessible for user Lan) followed by … Continue reading Nmap scanner after a credential scan or before credential scan?→

Vulnerability management process design – Improved VM using standards [on hold]

Posted on February 20, 2019 by ibrahim

I’m working on a project. I want to develop a Vulnerability Management system, but I’m lost.

My plan is to use Nessus to do all the necessary scanning then export the report to the Vulnerability Management system. From ther… Continue reading Vulnerability management process design – Improved VM using standards [on hold]→

Is it possible to pass TCP handshake with spoofed IP address?

Posted on June 14, 2013 by ibrahim

Little time ago, me and my friends argued if TCP handshake can be passed with a spoofed IP address.

Assume I have a web server that allows only certain IP numbers.
Can anyone connect that web server by IP spoof?

Continue reading Is it possible to pass TCP handshake with spoofed IP address?→