Category Archives: Enterprise Threat Protector

In the first blog post I covered why HTTPS web traffic has grown to unprecedented levels, provided a TLS primer and looked at the basic concept of intercepting and inspecting HTTPS web traffic with Man-In-The-Middle techniques (MITM). In the second… Continue reading Inspecting TLS Web Traffic – Part 2→

In this series of blogs I’m going to talk about how the continued move towards all web traffic being encrypted has impacted enterprise security. In this blog I’m going to focus on the basics – what is encrypted web traffic… Continue reading Inspecting TLS Web Traffic – Part 1→

In the early 2000s, security was mostly focused on perimeter separation between the trusted corporate internal network and the untrusted everything else. Separation was very clear, as most corporate applications were inside the perimeter and users were office based, with… Continue reading Enterprise Threat Protector as a Security Enabler in 2020→

Recursive DNS communications are normally unencrypted between a client and a resolver. In an effort to improve user privacy and address security concerns, Mozilla announced it would begin enabling DNS over HTTPS (DoH) by default in its Firefox browser. However,… Continue reading Firefox DNS over HTTPS (DoH) and Enterprise Threat Protector→

Additional research and support provided by Danny Wasserman. Overview One of the goals of phishing sites is to lure individuals into providing sensitive data, such as personally identifiable information, banking and credit card details, and passwords, through the use of… Continue reading Phishing Tool Analysis: Modlishka→