0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Cyber Workforce Solution: Hire More Veterans
By: ginasilvertree
July 6, 2016

By Kathleen Smith For the last several years, cyber security leaders and business owners have been lamenting the worldwide hiring crisis for cyber security professionals [1] . From building new educational programs, to discussing the relaxation of immigration regulations, every corner of the cyber security community has looked for an answer to this crisis. At the same time, ...

Roadmap for Routine Administration Manpower Requirements
By: Wookie
July 6, 2016

For the system administrators out there, and the managers of those teams, taking care of an enterprise often boils down to a fiscal year's hardware and software costs and whether those assets are being properly managed. Rarely, are IT teams prepared to justify their own existence to the CIO.In most cases, manpower is lucky to be an afterthought, when ...

Email Spoofing with Python Tools
By: Denny Gonzalez
July 5, 2016

Greetings to all, Email spoofing is a very old technique. It's still widely used in the schemes Spear Phishing or Spear Apps to trick a user into believing they're receiving an email from a specific person. That is, a user impersonates another and try to make a credible message as possible. In many ...

How to Sandbag Against IP Target Acquisition for Reverse Proxied/Obfuscated Services
By: V
July 5, 2016

This article is the counter to my article about finding the obfuscated IPs of a server. In the pentesting scene and security scenes, one of the more popular methods of securing servers and websites is by obfuscation and/or misinformation. If you can't find the real IP of a backend server, it's harder to accurately test it for: ...

Sunday’s Cyber Security Fact: Cyber Security Standards (July 3, 2016)
By: ginasilvertree
July 3, 2016

What are Cyber Security Standards?   "Cyber security standards are various forms of security standards which enable entities and organizations to practice security techniques to help minimize the number of cyber security attacks. In essence, the cyber security standards are fundamental guides which provide a general outline as ...

"Done for You" - Collection of Content on How to Prevent Ransomware
By: ginasilvertree
July 2, 2016

Today, most companies are deeply concerned about how to prevent ransomware. News stories abound and Infosec professionals are scrambling to keep themselves and their users out of the fire.Below, you'll find a compilation of content to understand this important topic - from a 360 perspective.But, first a quick definition. According to Wikipedia: "Ransomware is a type of malware that ...

CyberPop - What's Penetration Testing or Pentesting?
By: ginasilvertree
July 1, 2016

CyberPop is a quick way to learn more definitions and facts about cyber security.  Today’s Question: What's Penetration Testing or Pentesting?   Answer: “Penetration Testing or Pentesting refers to techniques for actively testing an organization’s computer or network security, usually by identifying potential vulnerabilities and weak spots and trying to exploit those and/or break in.” Browse courses and topics ...

10 Methods for Staying Anonymous Online
By: bl0wNcl0udz
July 1, 2016

Technology - and most importantly, the internet - is a major part of our daily lives. Some use and rely on it for almost all of their day to day tasks. But, despite it's many wonderful qualities and uses, it can be a dangerous place for those who aren't educated in the safety measures one must take in order ...

Ethical Hacking with Kali Linux – Part 6: Nmap (Network Mapper)
By: bjacharya
July 1, 2016

Ethical Hacking with Kali Linux – Part 6: Nmap (Network Mapper) > > ‘Nmap’, basically Network Mapper, is a port scanning utility/tool. It helps determine whether ports are open or closed. It also helps find out the operating system running on the host or target machine (along with services of ports).> > We can ...

How to Use Ettercap and SSLstrip for a Man in the Middle Attack
June 30, 2016

What's a Man in the Middle Attack (MITM)? A MITM is a kind of cyber attack where a Hacker/ Penetration tester compromises your network and starts redirecting all the network traffic through his own device (Laptop, Phone, Raspberry Pi, etc.).What's bad in these attacks is that the hacker, between ...