ISC2 has finally formally approved my CISSP certification. One major goal for the year has been completed…now for all the rest!
It looks like big telco is trying to break up wholesale subsidies, according to an article in ArsTechnica.
I’ve made a great deal of progress with my personal goals over the last few months. My CISSP is currently in review waiting for final approval, and my GPEN is in progress. I’ve even managed to post semi-regular blog posts….
One of my biggest annoyances with my regular Nessus scans are the continuous medium risks related to weak SSL ciphers. Nartac Software created a simple tool to help admins fix these issues: ISSCrypto. Simply download the tool, then run it…
I became aware yesterday that several sources are reporting Energy Services Group was “hacked” or “attacked.” There’s been a little saber rattling about hackers getting control of the US energy markets. Being that I’ve had some dealings with ESG over…
A few months ago, I had moved almost all of my storage into Google Drive, OneDrive, or iCloud depending on the usage. This allowed me to turn down my old Dell FreeNAS server in an attempt to save on my…
Folks – it’s time to tick everyone off with network maintenance windows! Cisco PSIRT released 30 vulnerabilities in their router firmware across multiple versions of IOS and IOS EX. Three critical vulnerabilities include one hard-coded credential affecting all IOS XE routers…
The draft for this project has changed three times since starting – mostly due to resource constraints on my end. I’ve bounced between hardware, hypervisors, and focus but I’ve settled on an approach. My immediate needs outweighed the need for…
TCP and UDP are two very different protocols. I’ve spent a fair amount of time over the years explaining these two issues to our power engineers and technicians. What better topic to post here.
Here’s a Splunk query to list any changes to privileged Active Directory groups: