Collaborate Disseminate
I know it is impossible to completely prevent a host from accessing the data of a virtual machine (as noted here, here and here), but I think there is value in making it harder to do so. Bare metal servers aren’t always an o… Continue reading How to make it harder for a VPS provider to access my data?
From my understanding of a VPN, it essentially creates a network between the two ‘machines’. So if I have open ports (e.g. HTTP, SSH) on my client machine, those can be accessed by the VPN provider or other users.
Suppose one is running a single internet-facing daemon, as a service in a FreeBSD jail, and expects targeted hostile attacks targeting open WAN ports and services.
Like many services, the service and indeed its jail don’t ne… Continue reading Tightly locking down a FreeBSD jail
Once there’s a primary Google account registered on the device and then another work account is added in order to access G Suite of the work place, what are the G Suite administrators are able to access/modify on the phone?
… Continue reading Implications of adding work account to an android device
I need to buy an external TB hard drive and store sensitive information on it. External hard drive aren’t small, it may have to be left unattended at times.
What can I do to tighten the hard drive security so that if any phy… Continue reading External hard drive security
I’m starting out in Malware Research / Malware Analysis. I am reading a book called “Practical Guide to Malware Analysis,” which touches this in the 2nd chapter, before approaching Dynamical Analysis (malware detonation). How… Continue reading Hardening VM for Malware Analysis
I’m currently trying to figure out the best way to configure Windows PowerShell logging, so that
it is secure (Attackers cannot gain sensitive data out of it)
it helps in DFIR (digital forensic and incident response) cases
… Continue reading How should you configure PowerShell logs permissions?
What would be the secure or preferred browsers used by the information security professionals/ analysts or recommended by pen testers etc. Browsers or browser settings or browser hardening applied etc.
Continue reading What are some of the browsers used by information security professionals? [on hold]
Is this possible? If not through ufw then some other software or iptables? How should I set up the ip tables?
Assuming my public ip is known (and I don’t want to change it), would it provide complete security against hacking… Continue reading For security purposes, can I use vpn with ufw to allow traffic only from the vpn on ubuntu?
It is possible to make Server respond with irrelevant data if it is scanned with Nmap? If yes, are there any examples of such SW?
Continue reading Hardening against Nmap and other network scanners