0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Unpacking the Interview: Penetration Tester
By: Shelby Welty
December 21, 2020

Unpacking the Interview: Penetration Tester More than sixty percent of web applications are vulnerable to high- or critical-risk vulnerabilities outside the OWASP top 10 list. For companies, this creates a serious cybersecurity gap. If apps and services contain undetected weaknesses that hackers could exploit to compromise IT environments at scale-enterprises could find themselves dealing with massive data exfiltration or complete ...

How to Get A System Administrator Job
By: Garrett Wilson
December 16, 2020

What is a System Administrator? The system administrator career path is often considered a “stepping stone” for more advanced IT and infosec positions. It offers a host of learning and growth opportunities for passionate technology professionals. With an average starting salary of just over $60,000, work in systems administration helps set the stage for security analysis, incident forensics, penetration testing, ...

XSS Basics
By: Raymond Evans
December 15, 2020

What is XSS?: Cross-Site Scripting, aka XSS, is a vulnerability found on web pages that give attackers the ability to inject malicious scripts into ordinary sites. Attacking an XSS vulnerability can result in bypassing access controls, user information theft, and the ability to gain access to a victim's web browser. Often when a user has fallen victim to an XSS ...

Network Firewall: Most Frequently Asked Interview Questions
By: klowe
December 15, 2020

A network firewall is still considered the main security component in any network defense plan. A firewall is used to isolate internal networks from outside networks (e.g., the internet) and prevent malicious actors from accessing trusted networks. Firewalls are also used to protect individual endpoint devices from malicious software and misuse. They prevent endpoints from communicating with malware operators or ...

How to Dox
By: Jafar Hasan
December 9, 2020

This article is the second of a two-part series on Doxing. The first article can be found here. Doxing is essentially gathering sensitive information about a target that they generally wouldn't want or expect disclosed. These details include everything from their name, email address, ZIP code, and even home and work addresses. This article demonstrates some techniques to gather intelligence about ...

How To Learn IoT From Scratch
By: Michael Cunningham
December 9, 2020

Well, first, do your research. When researching, Google is your friend. Read articles about IoT and watch YouTube videos about it. Read more blogs about IoT. Do you have friends that work in the IT or telecommunication field? Don’t be afraid to ask them questions. For a focused approach, go to YouTube. Watch videos of the subjects required in IoT. ...

What Letters at End of Intel CPU Model Numbers Stand For
By: Rohin Jain
December 8, 2020

Like the curious type, some people may wonder what those random letters are at the end of Intel CPU model numbers and wonder why they are there? Intel is one of the leading CPU manufacturing companies. It is also the guiltiest for throwing seemingly random letters at the end of a product name, so it might be difficult to understand ...

Amazon Web Service (AWS) With Python
By: Phillip Durst
December 7, 2020

What is AWS? Amazon Web Service, or AWS, is Amazon’s cloud computing platform, and it is currently the most widely used cloud environment in the world. It includes a vast set of tools and functionalities and is used across industries, academia, and even government applications. AWS is the rising star of cloud computing, and it is very tempting for new ...

Stateful vs. Stateless Firewalls
By: Nilesh Mojidra
December 7, 2020

Protecting an organization's network becomes a top priority in today's information age. As more organizations are shifting their operations to become completely digital, the cost of a data breach can have tremendous effects on any business entity. According to Statista, the number of data breaches in the United States amounted to 1,473, with over 164.68 million sensitive records exposed, ...

Advanced Google Dorking Commands
By: Aditya010
December 4, 2020

Google hacking, also known as Google Dorking, is a computer hacking technique. It uses advanced Google search operators to find security holes in the configuration and code that websites use. It is also useful for retrieving hidden information not easily accessible by the public. Google Dorking involves using advanced operators in the Google search engine to locate specific text strings within ...