December 10, 2018

Category: Defensive

PowerShell :: Parsing text output

I came across a really great way of parsing output from command line tools within PowerShell so had to right a quick blog about it here to share it.  Normally I like to cite my sources but I’ve lost track of the original stack overflow post that led me to this point… Sorry! This technique […]

Tenable Nessus, where has my API gone?

Nessus Professional (Pro) is undoubtably one of the cyber security consultants favourite tools. It has also been a widely adopted tool for organisations on a budget  looking to start out in the never ending world of vulnerability management. It’s humble beginning starting out as a fully open source tool, to the favourably priced commercial  entity we see […]

DNS Sinkhole – What is it & Why do I need one?

In this post I will talk about DNS Sinkholing, what it is and how it can help you identify potentially infected machines. Useful in the fight against malware such as viruses, Ransomware and Crypto Jacking! What is DNS? Domain Name System – in very basic terms, the internet (and local networks) are all routed by […]

Security Concerns :: Ransomware

Working for a security consultancy/MSSP business, I come across a lot of customers who in the past have gone to companies seeking advice on a particular security threat that is getting more media attention at that particular moment. More often than not, the “Security Expert” (salesman…) sells them a device; promising them it will fix all […]

How secure is IEEE802.1x?

I’m a huge fan of deploying “dot1x”.  With very little configuration (a Windows NPS server, a little group policy and some access switch commands) you can authenticate every device that connects to your network.  Unlike MAC based security, dot1x ensures that your devices must be successfully authenticated by a centralised RADIUS server before they are […]

Mubix – Attacker Ghost Stories

This is a great video with some novel out-the-box methods for defending the modern enterprise.  I just had to share it as to date it’s got just over a thousand views and it’s actually got some really good, original content.  It’s hosted on YouTube so I have embedded it below.  Watch, learn and apply and […]

Subscribe to SYNACK via Email