Cybrary’s Open Blog is a user contributed cyber security knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.
Featuring tutorials, op-eds, research papers, user guides, cheat sheets, product reviews, official Cybrary posts, and more; The Open Blog provides the cyber security community a growing resource of content that can help professionals at all levels in their careers.
Cybrary | 0P3N
Synchronizer token pattern
In this post let’s discuss about using a synchronizer token pattern to prevent CSRF (CSRF meaning Cross-site request forgery.). Synchronizer token pattern (STP) is a technique where a token, secret and unique value for each request, is embedded by the web application in all HTML forms and verified on the server side. Then the token is generated by the server with ensuring the uniqueness. In here server generates token per every session. In that case the attacker is un ...
In this post let’s discuss about using a synchronizer token pattern to prevent CSRF (CSRF meaning Cross-site request forgery.). Synchronizer token pattern (STP) is a technique where a token, secret and unique value for each request, is embedded by the web application in all HTML forms and verified on the server side. Then the token is generated by the server with ensuring the uniqueness. In here server generates token per every session. In that case the attacker is un ...
MS Outlook is a widely utilized email client, across the globe to manage work perfectly. Mainly, its stores the complete mailbox data like contacts, calendar, emails etc., into PST file format. As we all know, the Outlook is a perfect email application but, it also consists of some negative aspects also. Sometimes, users confront with an erro ...
Author : Ben Nahorney
For more than a decade, Cisco’s security reports have been a definitive source of intelligence for security professionals interested in the state of the global industry. These comprehensive reports provided detailed accounts of the threat landscape and their organizational implications.
Today we are publishing our secon ...
Restoring or exporting?
Restoring or exporting? Which one suits you better? Well, we are talking about your emails. We believe you are backing them up to some drive. We won’t ask you how because that depends on how and where you want it; and how your company gets the task done. Here we will be discussing the post-disaster situation, where you have lost emails from the source, and you need them back. Before that, let’s learn the probable disasters. Mail Deletion due to office policies: Most ...
Restoring or exporting? Which one suits you better? Well, we are talking about your emails. We believe you are backing them up to some drive. We won’t ask you how because that depends on how and where you want it; and how your company gets the task done. Here we will be discussing the post-disaster situation, where you have lost emails from the source, and you need them back. Before that, let’s learn the probable disasters. Mail Deletion due to office policies: Most ...
How to prepare for your Azure Certification
Attaining azure certification is one of the most pertinent moves in your cloud career. So, before you start the preparation, the first thing to do is to decide the certifications that you must pursue to boost your career. With the new role-based Microsoft Azure certifications, you can now opt to go for precise skills that are required in your actual job-role and gain knowledge on the same. It will not only enhance your credential but also showcase your learned expertise and ...
Attaining azure certification is one of the most pertinent moves in your cloud career. So, before you start the preparation, the first thing to do is to decide the certifications that you must pursue to boost your career. With the new role-based Microsoft Azure certifications, you can now opt to go for precise skills that are required in your actual job-role and gain knowledge on the same. It will not only enhance your credential but also showcase your learned expertise and ...
First, let’s see why we can use regular expressions and how to use them in the context of pentest.
1. Regular expressions can greatly help in the process of exploration and data collection – in order not to collect any garbage, we will be able to select only that part of the content that will be really useful for us.
2. In the pro ...
Virtualization is the process of creating a lot of machines on one machine , as if they work separately.This technology is becoming very popular due to its benefits . To understand it well , let’s consider 3 protocols of virtualization : Application / OS / hardware , when virtualization is used we can considder that there are more than o ...
Social Engineering: A social way to exploit computers
Have you ever gotten an email titled something like “You have an outstanding invoice” or “YOU ARE THE LUCKY WINNER!!!!” and (hopefully) as quickly as you saw it, deleted it? Well, this is a form of social engineering. Social engineering takes many forms and the above example is one of the many ways attackers will try to exploit you and your computer. Phishing This is the most common example of social engineering. It is the example that I gave at the start. Phishing i ...
Have you ever gotten an email titled something like “You have an outstanding invoice” or “YOU ARE THE LUCKY WINNER!!!!” and (hopefully) as quickly as you saw it, deleted it? Well, this is a form of social engineering. Social engineering takes many forms and the above example is one of the many ways attackers will try to exploit you and your computer. Phishing This is the most common example of social engineering. It is the example that I gave at the start. Phishing i ...
Support Cybrary
Donate Here to Get This Month's Donor Badge
Cybrary|0P3N
Get on Thycotic’s nice list for 12 days of Privileged Access Management Giveaways
Views: 5262 / November 21, 2019
Views: 5262 / November 21, 2019
