RSS

Posts in 2024

  • ncl-osint-ssl

    31.01.2024 in NCL-Spring-2024

    SSL (Medium) First off, a rant… This is a TLS (Transport Layer Security) encrypted key, not SSL (Security Socket Layer). I realize that these terms are often used interchangeably, but they represent different generations of security …

    Read more

  • ncl-osint-whois

    30.01.2024 in NCL-Spring-2024

    WHOIS (Easy) You could totally use a WHOIS lookup website to answer these, but I love using the command-line whenever possible. Example websites for reference: https://www.whois.com/whois/ https://lookup.icann.org/en https://mxtoolbox.com/whois.aspx …

    Read more

  • ncl-osint-threat-intel

    30.01.2024 in NCL-Spring-2024

    Threat Intel (Easy) Simple Google searches for this one as well. Q1: What is the CVE of the original POODLE attack? A: CVE-2014-3566 POODLE (Padding Oracle On Downgraded Legacy Encryption). This security vulnerability was disclosed in 2014 and …

    Read more

  • ncl-osint-pgp-lookup

    30.01.2024 in NCL-Spring-2024

    PGP Lookup (Easy) Public PGP (Pretty Good Privacy) Key Servers: https://pgp.mit.edu/ https://keyserver.ubuntu.com/ https://keys.openpgp.org/ Q1: What is the key fingerprint for security@cpanel[.]net? A: B6709B4CC6F42077F69841919521BEDCABD94DDF Q2: …

    Read more

  • ncl-osint-meta

    30.01.2024 in NCL-Spring-2024

    Meta (Easy) This section has a downloadable image (Meta.jpg) and asks about some of the metadata. Most of the information can be found by simply looking at the properties (Right Click -> Properties) and then going to the “Details” tab. …

    Read more

  • ncl-osint-lookup

    30.01.2024 in NCL-Spring-2024

    Lookup (Easy) This section just required a bit of research and Google to find the answers. I’ve included a bit more information if you are curious. Q1: What type of DNS record holds the DNSSEC public signing key? A: DNSSEC The DNSKEY record …

    Read more

  • ncl-osint-http-headers

    30.01.2024 in NCL-Spring-2024

    HTTP Headers (Easy) Shameless Plug… I’ve got a course specifically focused on HTTP for Cyber Security: Pluralsight - Network Protocols for Security: HTTP Separately, this section has some simple questions that you can use Google to …

    Read more

Posts in 2023

  • Critical Infrastructure - FL

    05.05.2023 in Misc

    Why Critical Infrastructure Cybersecurity Matters and How Florida is Stepping Up to the Challenge As an Security Researcher and member of the Florida Air National Guard, I understand the importance of securing critical infrastructure. Cybersecurity …

    Read more

  • iptables to nftables

    23.04.2023 in Engineering

    TL/DR I made a simple bash script to help automate this: #!/bin/bash # Check if the script is being run as root if [ "$EUID" -ne 0 ] then echo "Please run this script as root" exit 1 fi # Save current iptables rules to current …

    Read more

Posts in 2022

  • Tragedy of DNS Security

    08.08.2022 in Security

    The Tragedy of DNS Security TL/DR - DNS Security is Bad (Currently…)! I’ll defend all these thoughts, but in case you don’t read any further than this, here’s the highlights: It’s easy for vendors to sell you something …

    Read more