0P3N Blog

CobaltStrike is one of those tools that you shiver at the potential power it holds when you hear its name. Its original use was a penetration tool primarily used for spear-phishing tactics, access to systems, and various other testing methodologies. Security teams must have a reliable way to detect its presence within their environment. Whether it is a planned pentest ...

The digital revolution has brought many benefits to our society. One of the early innovative technologies was e-mail, which has become an imperative method of business communication. E-mail is fast, cost-effective, accessible, and convenient. By using e-mail, businesses can efficiently and reliably transfer electronic data (MS Office documents, photos, and data sheets). Despite the great benefits of e-mail, it is still ...

NotPetya is widely known as one of the most devastating variants of malware in history. The impact of it was felt particularly in Ukraine, but its area of effect was global. The success of this cyber attack was significantly due to the release of a 0-day exploit called EternalBlue. In this case, it was a 0-day vulnerability in Windows systems. ...

A skills gap analysis is one tool that can be used to improve an organization’s cybersecurity position. It is a measurement between a current level of performance and a desired level of performance. While the analysis will focus on employee skills, it can uncover problems with a company’s policies, hiring practices, or training programs. This analysis can be time-consuming, but ...

Amazon Web Services (AWS) is one of the biggest cloud provider platforms on the market. The company itself has been growing at a very impressive pace, which will likely continue well into the future. Therefore, if you're trying to be strategic about your career, having a good understanding of AWS will be very helpful if you want to get into ...

The digital revolution has impacted all our life aspects; the proliferation of computers and internet technologies is now evident in organizations of all types and across all industries. The most apparent evidence of digitalization was the massive increase in digital data. For instance, nowadays, most data are created digitally and never find their way into papers. According to Seagate, by ...

Fifth grade (K-12) school districts are experiencing increasing cyber-attacks, especially in light of increased virtual learning due to the COVID-19 pandemic. From distributed denial of service attacks to ransomware, school districts are under a wide variety of attacks. Since 2016, districts in the United States have experienced more than 1,000 attacks. Cybercriminals are finding many school districts to be attractive ...

Self-described C-Level cybersecurity celebrity and comedian Drew Freed, joined Digital Media Producer, Thomas Horlacher, on the Cybrary Podcast to discuss Drew’s role as Human Error in the security awareness training by Mimecast. This unique character that has a proclivity for giving out passive security advice in the workplace went viral within the cybersecurity community in recent years. Follow the origins ...

Being able to respond and detect malicious events effectively is critical when operating SIEM solutions. There is a fine line between seeing too much and not seeing enough. This article will focus on how to identify and detect PowerShell ShellCode with a Splunk search query. That search can be made into a dashboard or even developed into an alert whenever ...

We live in a world where products and services are now manufactured by more than one provider located in different countries. However, the proliferation of the internet and IT technology shifted the outsourcing concept to a new dimension. Outsourcing is the practice of shifting part of the workload, tasks, work operations, or processes to an external vendor for a specific ...