Collaborate Disseminate
Background:
There are a lot of self-hosted web applications these days, and often, more than one for the same purpose. In my case I am looking for a replacement for GitHub or other big tech/cloud git platforms. But I am stack at: security…. Continue reading Evaluating Self-Hosted Web Applications
Protecting sensitive data is critical for businesses facing constant cyber threats. Automating encryption, audits, and access control strengthens security and reduces human error. Continue reading Automating Data Encryption and Security Audits for Continuous Protection
I’m university student my degree is Computer Engineering. I need an expert review on work.
Where I can find expert on Computer Engineering and Cybersecurity?
From personal experience many mobile apps that I’ve tested don’t actively detect and discourage (with a warning) or even block the app from running on/in:
a rooted/jailbroken Android/iOS device
emulated environment
an end-of-life iOS or e… Continue reading Should mobile app developers actively prevent apps from running on outdated devices/rooted devices/emulators for security purposes?
The SOC 2 framework includes 5 Trust Services Criteria made up of 64 individual requirements. Where can I find said 64 individual requirements to support an internal gap analysis ?
I’d like to attempt to not rely on Vanta to conduct a gap … Continue reading SOC2 – Public/Free list of 64 individual requirements to support an internal gap analysis? [closed]
I am looking for ways to value add to existing Office 365 Security & Compliance center which is available by default. Adding HIPPA compliant check but I don’t wanna pay for the templates available in 365.
Is it better to write custom p… Continue reading Is there a Opensource way to compliance audit Microsoft 365 Apps [closed]
I am working on a data processing task in an enterprise environment with Python3 installed on a client-side Windows Jump server.
The data, which I need to download regularly from a third-party provider, is accessed via a REST API.
The busi… Continue reading Log REST API calls in the most auditable way
Could you please suggest if I need to do anything else to ensure that my server is secure against the most common attacks? Currently it seems fine to me, but I would highly appreciate if someone with penetration testing / hacking experienc… Continue reading Do I need to implement additional security measures for my self-hosted container web app?
I would like to know if there is a way to run an app to exhaustion in terms of all possible outcomes that it can provide.
What do I mean by that:
Let’s assume that someone has an (Apache) HTTP Server. What I am trying to do is to create pr… Continue reading Execution profile for web server
I’m looking to integrate Sigma rules into my SOC ecosystem, and am bumping into issues with using Sigma rules.
Specifically, auditd includes a "type" field which tags logs with some category, while Auditbeat doesn’t.
Is there a w… Continue reading Auditd and Auditbeat compatibility when using Sigma