Collaborate Disseminate
Assume an Angular SPA application on www.example.com that works invoking an API over that same domain www.example.com/api/…
The Angular app gets a session cookie and sends it in each API call.
The usual CSRF attack would try to execute a… Continue reading Is server side CORS protection enough to mitigate CSRF attacks against stateless APIs?
My question is on Cyber Threat Intelligence (CTI). I want to know the difference between Attack Patterns (as in MITRE CAPEC) and Tactics, Techniques and Procedures (as in MITRE ATT&CK). They both seem to describe the behaviour and modu… Continue reading What is the difference between ATT&CK and CAPEC?
My question is on Cyber Threat Intelligence (CTI). I want to know the difference between Attack Patterns (as in MITRE CAPEC) and Tactics, Techniques and Procedures (as in MITRE ATT&CK). They both seem to describe the behaviour and modu… Continue reading What is the difference between ATT&CK and CAPEC?
Looking at a plain system (there are no security controls implemented yet), we need to think about its functions and derive appropriate assets which we’d like to protect in order to ensure the system continues to function as intended (also… Continue reading Are security controls themselves considered assets (e.g., cryptographic keys)
According to the CySA SYBEX book, in chapter 1, power failures are listed as both environmental threats and structural threats… but which one is it?
According to the book:
Environment threats occur when natural or man-made disasters occ… Continue reading Is Power Failure an Environmental or Structural Threat?
Could you please help me in finding a repository for MITRE ATT&CK ICS? I was wondering if the matrix, along with labels, assets and tactics was available smewhere online, perhaps in a STIX format as they did for ATT&CK Mobile, Ente… Continue reading MITRE ATT&CK ICS Machine readable
I am having an issue with someone directly below me compromising my machines by tracking me with RF signals. I am looking for the most efficient way to set up a faraday enclosure to prevent this from continuing to happen.
Initially I looke… Continue reading Best material for a faraday enclosure [closed]
I am using CVSS to do the vulnerability assessment for my project.
As per documentation here is the definition of local and adjacent
Adjacent (A) The vulnerable component is bound to the network stack, but the attack is limited at the p… Continue reading What is the difference between "local" and "Adjacent" threat agents?
What are approaches for monitoring cyber threats “outside” of the organisation, such as data like account passwords, credit cards, company data for sale, etc?
While there are services for monitoring account credential availability with ema… Continue reading How to monitor the internet at large for threats to your organization?
For customer support reasons, we need to store passwords to some of our customers’ systems (with their explicit, written permission, of course), as well as, obviously, passwords to some of our own systems. Customer support agents and admin… Continue reading How do I minimize the number of passwords leaked when a PC gets compromized?