submitted by /u/freddieleeman [link] [comments]

submitted by /u/TheDFIRReport [link] [comments]

submitted by /u/rmw132 [link] [comments]

submitted by /u/Skipper3943 [link] [comments]

Hello, what program can i use to make radar analysis on vessel? Its for my masters. thanks submitted by /u/skrubitos [link] [comments]

Hi, out of curiosity, is there some study or way to estimate rough ratio of bot farms of major countries (meanded they they are getting orders from government/army, sercet service) like Russia, China, USA, France, etc.? submitted by /u/arktozc [link] [comments]

So basically I am searching for a place to make an internship at. I have found and written some but I can't seem to find many companies submitted by /u/FBIAgent469 [link] [comments]

we have started using CISCO's Duo MFA (Multi Factor Authentication) solution to secure our organization's users identity. but some of the 3rd party Apps can't support to use MFA. what would be ideal security solution to fit in this case? submitted by /u/johnnoah06 [link] [comments]

Hi, I have recently read through some SSU (Ukraine secret service) articles about shuting down decent amount of Russian bot farms during last year and one thing keeps me wondering. What would/could be the motivation create bot farms on enemy territory? Is there some technical lmitation or benefit or is there some financial reason or just why? Like why dont you make those farms on your territory or in some country in Africa that nobody cares about, etc.? PS: Not sure what tag to choose, so if Russ/UK is more apropriate, then just send me a msg and I will edit it submitted by /u/arktozc [link] [comments]

In Text4shell (CVE-2022-42889) there are 3 potential security vulnerabilities which are triggered by String substitution marked by specific prefixes, which could lead to problems. One of them is "script" which can lead to code injection, self explainatory. The other two are "dns" and "url" which according to the CVE "could result in (...) contact with remote servers". I can't quite understand why pure contact with remote servers is a security concern. How is it exploitable to make dns lookups for the hostname of an ip address via a foreign system? Why should that be a problem? To map out internal structure if its a bigger network? submitted by /u/mangyCarl3 [link] [comments]

submitted by /u/CyberMasterV [link] [comments]

Passed my Sec+ a couple hours ago! YES!! After 1 month of studying or so. Used Udemy, Practice exams (On Udemy), All in One Text book. Any questions feel free to ask! I also get to finally build my first PC as a reward for passing the exam! Also I've been seeing alot of people saying once you get Sec+ and you have a DOD Security Clearance the rest is easy peasy getting into Cyber Security. Not really sure how that's easy, anyone with that kind of experience care to elaborate ? I recently landed a Help Desk Remote Job for an ISP with just a Net+ Cert and having good troubleshooting skills over the phone. Not really sure where to go on from there. As I seen some cyber security job postings and most need a CS or something related with 3-5 years of experience in the field. I'll also add that I'll be starting a cloud computing degree at WGU and plan on finishing as fast as possible, maybe 2 years or even less. I also plan on taking my CySa+ in December and afterwards finishing it off with CCNA. Thoughts anyone ? submitted by /u/Organic-Exercise-946 [link] [comments]

Hello all! I'm in the final rounds of a Cybersecurity manager position at a consulting firm. I'm told it'll be a 6 person, half hour each, case/ case study interview. Following which I'll have to send in a write up with my summary for the case. I can see why, they're wanting to examine how you approach a problem and break it down. I've been through quite a variety of interview types for Cybersecurity roles but never come across a case or case study interview. I tried to find some Cybersecurity case interview examples online but couldn't really find anything. Almost all examples online for case interviews were all business/profitability related. Has anyone on here who has gone through Cybersecurity case interviews for consulting firms? Would you be willing to share insights with examples of what that looked like? What can i do to prep? I'm very confident about my abilities but having never done a case interview has me quite nervous. Anything you can share would be helpful. I'm also open to engaging in a chat if it makes it easier to share. submitted by /u/CrazyAutopilot [link] [comments]

how can i solve this error? I want nobody to have access to the WordPress login on the page submitted by /u/CourageNo6010 [link] [comments]

I have multiple years of professional work experience as a senior infosec engineer at one of the world's largest defense companies. I also have multiple years at a senior engineering level for infosec at one of the world's largest banks. This is my current job. The HR departments of both companies will officially confirm this for anyone that asks. I am not attempting to break into cybersecurity, that happened a long time ago. When I decided to credentialize I never bothered to get the Sec+ but got several more advanced GIAC certifications instead. I'm wondering if the Sec+ is so ubiquitous now that it's expected that all professional infosec practitioners should have it? Might it be detrimental in some way to not have this entry level certification? submitted by /u/sold_myfortune [link] [comments]

I've seen many Hak5 gadgets demos on YouTube and stuffs like rubber ducky bash bunny O.MG Cable and so on In most of these the screen is on and we can see the activities like URL visited, an apk is downloaded and installed. Another thing that I noticed is that the random passwords are entered by the device but if there are 5 attempts and it fails then wait for next 30 secs it's put on hold from entering anything. Just imagine if there are 1 million attempts, like user would have to wait Every 30 seconds after 5 attempts. I thought nothing will be displayed on the screen and the job will be done within like 30 seconds or less. If this is the case then the user will be suspicious right Then what's the use. Please correct me if I'm wrong. submitted by /u/jamesmiller9048 [link] [comments]

As we all know there are many spammers and campaigns out there trying to scare companies into replying and paying for bogus info, but recently we have been getting some emails from HackNotice based out of Austin, TX, with emails stating things like “trying to reach out to find the best way to share all of the indexed records, which may include employee PII, we have seen for your domain in HackNotice.” I’m aware probably just purely scare tactics and spam, but curious if anyone has experience with HackNotice and their legitimacy? Or just more of the same spam junk? submitted by /u/LastingTransient [link] [comments]

submitted by /u/Comfortable-View-713 [link] [comments]

This is the weekly thread for career and education questions and advice. There are no stupid questions; so, what do you want to know about certs/degrees, job requirements, and any other general cybersecurity career questions? Ask away! Interested in what other people are asking, or think your question has been asked before? Have a look through prior weeks of content - though we're working on making this more easily searchable for the future. submitted by /u/AutoModerator [link] [comments]

Hi everyone, i would like to start studying the PEN-100 from Offensive Security, and buying the anual package that includes every xxx-100 subject. I'm studying right now from tryhackme and i would like to know if tryhackme it's enough to get into Offensive Security and then escalate to OSCP step by step. How hard is PEN-100? Do i need a really good base to start studying there? Thank you so much! Edit: Maybe i can directly go to PEN-200? I think PEN-100 is like an introduction. submitted by /u/Feeling_Beautiful_85 [link] [comments]

There has been a run of burn out posts lately where everyone that hates their job piles in to echo the OP. Nothing wrong with this, I stayed too long in a sys admin, soul crushing position that almost killed me. I get it. I’m a sys eng now with 15 years experience and thinking of transitioning into a remote cyber job. Would love to hear from anyone that isn’t getting bludgeoned to death every day. Thanks submitted by /u/BeyondTheGreenHill [link] [comments]

I’m scared and worried about job hunting that I keep looking at applications for jobs in Computer Security and I freeze. I’ve studied for it but the requirements are all different. This field is huge but I wasn’t ready for any interview nor required experience. I’ve self studied for threat hunting and threat analysis, but I feel not ready for a job at SOC. I don’t have any networks and always been by myself which is something I regret. I’ve had past experiences of finishing studying and never landing a interview for years. I’m aware that is normal and that someone applied for 1000 jobs only get 2 but Damn!. (Might delete this cause it’s just anxiety and taking things off my chest) submitted by /u/Taffyoka [link] [comments]

submitted by /u/Skipper3943 [link] [comments]

submitted by /u/Skipper3943 [link] [comments]

submitted by /u/Puzzleheaded_Basil13 [link] [comments]

submitted by /u/Skipper3943 [link] [comments]