0P3N Blog
Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.



There are many IT certifications that can be applied in a direct or general way towards positions in cybersecurity. General certifications like Project Management Professional certification can qualify candidates for a wide variety of positions and specific cybersecurity positions. Other certifications like the CEH certifications are designed specifically for cybersecurity. This section explores some of these certifications and ...


The Internet of Things is a new, popular trend in commercial and consumer technology, and this trend is creating new vectors of attack for malicious hackers. A new type of botnet, the IoT botnet, has emerged in the wake of the Internet of Things. This section explores the basics of botnets, how it is applied towards the IoT, ...


My team works with a big number of media data: video, rendering, photos, illustrations. To ensure the best teamwork, we need constant access to all these files. At some point, we no longer have enough storage place at our own server, and we started looking for cloud storage that ...


This blog originally appeared on the Cisco Security blog . Reposted with permission. There is no question that unwanted email is a source of annoyance. It is also the biggest source of cyber threats. In fact, just last month, spam accounted for 85 percent of all email sent . Plus, according to Verizon’s 2018 Data Breach Investigations ...


What is Data Science? 'The Amalgamation of AI+ML+Big_Data' would be the sweetest and shortest answer. Formal Definitions: The application of tools, techniques, and methodologies of domains such as algorithms, machine learning, big data, and artificial intelligence in a systematic, disciplined and quantifiable manner which ultimately leads to Scientific and Engineered approaches to Data ...


What is Phactive? Phactive is a little script written in bash, it’s to aid in a red team workflow, Since red team is mostly about continuous monitoring and simulation of a real life attack. unlike in Penetration testing where you just have to run a scan and submit a report the explain ...


Now days we are dealing with lots of Security Incidents (which is Violation of Security Policy) and to deal with them we must follow some guidelines to address such security incident, here we will discuss Incident Response lifecycle that we (I am a Incident Handler) follow. You will have idea about what do we do in an overview perspective ...


If you’re one of the few who haven’t yet tried out container orchestration, you might be new to the Kubernetes architecture . “Kubernetes is a portable, extensible open-source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation.” Kubernetes, also popularly ...


The DevOps methodology empowers development and operations teams to collaborate rather than conflict with each other. Some of the benefits realized from a DevOps approach include more frequent software releases, shorter time to market, and fewer application failures in production.Despite these benefits, the focus on rapid development and compressed development cycles in DevOps acts as a barrier to ...


Open Source Software (OSS) components are essential for most applications today, often making up more than 50% of the codebase. Many organizations struggle to implement the appropriate security measures to protect against open source vulnerabilities. Once a vulnerability is fixed, another one pops up, and open source security can often seem like a losing game.This article explains the dangers ...