Collaborate Disseminate
What additional features would "licensed" anti-malware bring to a Domain Controller, as opposed to simply using Windows Defender ? I know that Windows Defender is a decent protection for end-user workstations but why would it not… Continue reading What additional features would "licensed" anti-malware solutions bring to a Domain Controller?
Assuming that a small office where basic security hygiene is already applied wants to improve their security posture, would such an office benefit from a technical internal pentest ?
Such an office’s network would be rather simple : a Doma… Continue reading What added value would an internal technical pentest have for a small barebones office with basic protections?
Assuming a threat actor would not have a huge amount of resources or is a script kiddie (he could not write a 0-day but he could buy a rubber ducky); in a Windows 10 environment, if the workstation is fully patched, would disabling USB dat… Continue reading Is disabling USB data transfers still useful to protect a patched W10/11 workstation?
Quoting the FedRAMP official FAQ:
FedRAMP requirements include additional controls above the standard NIST baseline controls in NIST SP 800-53 Revision 4. These additional controls address the unique elements of cloud com… Continue reading What are the FEDRAMP "complementary controls"?
At work we suspect a GWT app (that is not in production yet) we own to be vulnerable to CSRF. We have to look at it from a black-box point of view before a third-party security audit will be performed.
Due to the fact that a… Continue reading CSRF on GWT apps : bypassing the Same-Origin policy
cookies usually contain a sessionId to keep track of a logged user.
What would prevent a malicious user to forge millions of requests with random sessionIds and send them to a server, hoping to luckily end up with an existin… Continue reading Session Hijacking through sessionId brute-forcing possible?