0P3N Blog

Active Directory (AD) was introduced as a part of Microsoft Windows Server 2000 in 1999. It is Microsoft’s proprietary directory service which is based on Lightweight Directory Access Protocol(LDAP). It enables the administrator access to manage permissions and access to network resources. AD stores data in the form of objects, and an object represents a single element like the user, ...

Having the ability to detect suspicious Linux commands in your environment effectively is essential to a SIEM solution. The difference in comparing two different SIEM solutions, like Sumo Logic vs. Splunk, may be difficult at face value because they are both industry leaders. This article will provide you with several ways to better detect malicious Linux activity and search queries, ...

Everyone who has used a computer has heard of a computer virus at one time or another. It’s the most popular term used when talking about online security but is often a misunderstood term. A computer virus is just one malware type. Malware is any software that harms a computer system against the owner’s wishes. When someone says that they ...

Digital transformation is rushing to occupy all business areas. In today's information age, organizations of all sizes and across all industries utilize digital solutions to facilitate work operations and enhance efficiency. The most apparent aspect of digitalization appears in the massive volume of digital data stored and processed by all organizations, from small to enterprise. Data becomes the lifeblood of organizations, ...

Nmap is one of the most accessible and most popular cybersecurity tools. It's the best port scanner on the market and open-source. It comes pre-installed in security-focused Linux distributions such as Kali Linux and Parrot OS. Nmap also comes as a python library, which can be used for implementing the functionality of Nmap in your computer scripts. While Nmap is ...

CobaltStrike is one of those tools that you shiver at the potential power it holds when you hear its name. Its original use was a penetration tool primarily used for spear-phishing tactics, access to systems, and various other testing methodologies. Security teams must have a reliable way to detect its presence within their environment. Whether it is a planned pentest ...

The digital revolution has brought many benefits to our society. One of the early innovative technologies was e-mail, which has become an imperative method of business communication. E-mail is fast, cost-effective, accessible, and convenient. By using e-mail, businesses can efficiently and reliably transfer electronic data (MS Office documents, photos, and data sheets). Despite the great benefits of e-mail, it is still ...

NotPetya is widely known as one of the most devastating variants of malware in history. The impact of it was felt particularly in Ukraine, but its area of effect was global. The success of this cyber attack was significantly due to the release of a 0-day exploit called EternalBlue. In this case, it was a 0-day vulnerability in Windows systems. ...

A skills gap analysis is one tool that can be used to improve an organization’s cybersecurity position. It is a measurement between a current level of performance and a desired level of performance. While the analysis will focus on employee skills, it can uncover problems with a company’s policies, hiring practices, or training programs. This analysis can be time-consuming, but ...

Amazon Web Services (AWS) is one of the biggest cloud provider platforms on the market. The company itself has been growing at a very impressive pace, which will likely continue well into the future. Therefore, if you're trying to be strategic about your career, having a good understanding of AWS will be very helpful if you want to get into ...