info
Study materials for the Certified Red Team Pentesting (CRTP) exam
https://github.com/0xStarlight/CRTP-Notes

@Engineer_Computer

#businessadvisor #cyberdefense #data #cybersecurityawareness #cybersecuritytraining #cybercrime #cyberdefense #networksecurity
#securityaudit #intelligenceéconomique #analytics #research #mal #malware #reverseengineering #engineering #team #business #software #security
#BusinessSecureContinuity

#DiyakoSecureBow

Analytics
OWASP Top 10 API Security Risks - 2023

Risk:
1.
API1:2023 - Broken Object Level Authorization
Description:
APIs tend to expose endpoints that handle object identifiers, creating a wide attack surface of Object Level Access Control issues. Object level authorization checks should be considered in every function that accesses a data source using an ID from the user.

2.
API2:2023 - Broken Authentication
Authentication mechanisms are often implemented incorrectly, allowing attackers to compromise authentication tokens or to exploit implementation flaws to assume other user's identities temporarily or permanently. Compromising a system's ability to identify the client/user, compromises API security overall.

3.
API3:2023 - Broken Object Property Level Authorization
This category combines API3:2019 Excessive Data Exposure and API6:2019 - Mass Assignment, focusing on the root cause: the lack of or improper authorization validation at the object property level. This leads to information exposure or manipulation by unauthorized parties.

4.
API4:2023 - Unrestricted Resource Consumption
Satisfying API requests requires resources such as network bandwidth, CPU, memory, and storage. Other resources such as emails/SMS/phone calls or biometrics validation are made available by service providers via API integrations, and paid for per request. Successful attacks can lead to Denial of Service or an increase of operational costs.

5.
API5:2023 - Broken Function Level Authorization Complex access control policies with different hierarchies, groups, and roles, and an unclear separation between administrative and regular functions, tend to lead to authorization flaws. By exploiting these issues, attackers can gain access to other users’ resources and/or administrative functions.
https://owasp.org/API-Security/editions/2023/en/0x11-t10

@Engineer_Computer

#businessadvisor #cyberdefense #data #gpt4 #ai #cybersecurityawareness #cybersecuritytraining #cybercrime #cyberdefense #networksecurity
#securityaudit #intelligenceéconomique #analytics #research #mal #malware #reverseengineering #engineering #team #business #software #security

پرداخت الکترونیک سداد برای عناوین شغلی زیر در حال استخدام است:

SOC analyst
Network Security Specialist
Risk Management And Privacy Specialist

و ...

از طریق لینک زیر وارد صفحه فرصت‌های شغلی پرداخت الکترونیک سداد شوید و برای فرصت شغلی مورد نظرتان رزومه ارسال کنید.

https://jobinja.ir/companies/sadad-psp-1/jobs?utm_source=linkedin&utm_medium=social&utm_campaign=sadad

#SOCanalyst #NetworkSecurity #RiskManagement


@Engineer_Computer

🛡 End-to-End Web Security Architecture: FortiWeb WAF + FortiGate in Reverse Proxy Mode
Recently completed a comprehensive lab implementation and full documentation of a production-grade web security architecture using FortiWeb as a Web Application Firewall behind FortiGate, deployed on PNETLAB with KVM-based VMs.
🔹 Traffic Flow Architecture:
Client → FortiGate (WAN/VIP) → FortiWeb (WAF Inspection) → Apache2 Real Server → Response back to Client
🔹 Key Implementation Highlights:
✅ Linux Web Server hardening with Apache2 and static IP configuration via Netplan
✅ FortiWeb interface setup across three segments (Real Server / Client-LAN / Management)
✅ Complete WAF policy chain: Virtual IP → Server Pool → Virtual Server → Server Policy
✅ FortiGate perimeter configuration with DNAT Virtual IP (100.100.100.50 → 192.168.100.50)
✅ Firewall policy with full session logging for HTTP/HTTPS/PING traffic
✅ CLI-based traffic logging activation on FortiWeb (a step many engineers miss!)
✅ End-to-end verification through Forward Traffic logs on both devices
🔹 Why Reverse Proxy Mode?
It provides deep HTTP/HTTPS inspection, granular WAF policy enforcement, and clean separation between perimeter firewalling (FortiGate) and application-layer protection (FortiWeb) — a layered defense approach aligned with Zero Trust principles.
🔹 Key Lesson Learned:
The order of WAF policy configuration matters → Virtual IP must exist before the Server Pool, which must exist before the Virtual Server, which must exist before the Server Policy. Skipping the sequence breaks the binding chain.

💼 Currently exploring new opportunities in Network & Cybersecurity Engineering — open to on-site, hybrid, or remote roles. I deliver hands-on services in network design, firewall deployment (Fortinet, Cisco), WAF implementation, ICS/OT security (IEC 62443, NIST), and infrastructure hardening.

#CyberSecurity #FortiWeb #FortiGate #WAF #NetworkSecurity #Fortinet #ReverseProxy #InfoSec #OpenToWork #NetworkEngineer #PenetrationTesting #ICS #OTSecurity

🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer

🎯 Built a Free CompTIA Security+ (SY0-701) Practice Exam Simulator — No Friction, No Sign-up
As part of giving back to the cybersecurity community, I've put together a free, browser-based practice exam simulator for anyone preparing for the CompTIA Security+ SY0-701 certification. Whether you're starting your InfoSec journey or sharpening your fundamentals, this tool is built to mirror the real exam experience.
🔹 What's Inside:
✅ 300 original practice questions covering all 5 official SY0-701 domains
✅ Practice Mode — instant feedback and detailed explanations after every answer, so you learn as you go
✅ Exam Mode — fully timed simulation with no feedback until submission, matching real test conditions
✅ Flexible session sizing — choose 10, 20, 50, or 90 questions per run
✅ Domain targeting — practice all five domains or focus on weak areas
✅ Performance analytics — domain-by-domain score breakdown and incorrect-answer review
✅ Browser session persistence — refresh-safe progress, no account required
🔹 Domain Coverage (Weighted to Match the Real Exam):
📘 1.0 General Security Concepts — 12%
📘 2.0 Threats, Vulnerabilities, and Mitigations — 22%
📘 3.0 Security Architecture — 18%
📘 4.0 Security Operations — 28%
📘 5.0 Security Program Management and Oversight — 20%
🔹 Why This Matters:
Most quality exam prep tools sit behind paywalls or require lengthy sign-ups. I wanted something that respects the learner's time — open the page, pick a domain, start practicing. That's it.
🔹 Key Lesson From Building It:
The hardest part of certification prep isn't memorizing acronyms (SLA vs. ISA, TPM vs. HSM, CASB vs. SWG…) — it's training your reasoning under timed pressure. A timer + explanations + domain breakdown is what bridges that gap.

💼 Currently exploring new opportunities in Network & Cybersecurity Engineering — open to on-site, hybrid, or remote roles. I deliver hands-on services in network design, firewall deployment (Fortinet, Cisco), WAF implementation, ICS/OT security (IEC 62443, NIST), and infrastructure hardening.

#CyberSecurity #SecurityPlus #CompTIA #SY0701 #InfoSec #CertificationPrep #NetworkSecurity #OpenToWork #NetworkEngineer #CyberCareer #ContinuousLearning

🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer

🔍 Active Directory Enumeration Walkthrough: Mapping a Domain with pywerview
Just published a hands-on lab write-up demonstrating how an authenticated attacker with low-privileged credentials can enumerate a full Active Directory environment using pywerview — the Python port of the legendary PowerView module — and uncover real privilege escalation paths from a single foothold.
🔹 Lab Scenario:
Starting credentials: raj / Password@1 against the ignite.local domain. From this minimal access, mapping out users, groups, computers, delegation settings, ACLs, GPOs, and trust relationships — entirely over LDAP.
🔹 Key Findings Uncovered Through Enumeration:
✅ Domain Admin discovery — identified the aaru account via --admin-count filter (adminCount=1, member of Domain Admins)
✅ Kerberoastable SPN — the kavish account exposed via --spn, configured with TRUSTED_TO_AUTH_FOR_DELEGATION against a SQL server (constrained delegation w/ protocol transition)
✅ Unconstrained Delegation hosts — flagged via --unconstrained (a classic path to DC compromise)
✅ Backup Operators abuse path — user shivam enumerated as a member, opening NTDS.dit dump potential
✅ Trust enumeration — bidirectional forest trust to pentest.local discovered via get-netdomaintrust
✅ Domain policy extraction — password length, complexity, lockout thresholds, and Kerberos ticket lifetimes all readable from SYSVOL
🔹 pywerview Modules Demonstrated:
get-netdomain, get-netuser, get-netgroup, get-netgroupmember, get-netcomputer, get-netshare, get-netsession, get-netloggedon, get-netou, get-netsite, get-netsubnet, get-netgpo, get-domainpolicy, invoke-userhunter, invoke-processhunter, invoke-checklocaladminaccess, get-objectacl, get-netdomaintrust
🔹 Why This Matters for Defenders:
Every red-team finding above is a blue-team checklist item. Misconfigured delegation, stale adminCount=1 flags, over-privileged Backup Operators, and SPN sprawl on user accounts are the silent killers of AD environments. You can't harden what you can't see.
🔹 Key Lesson From the Lab:
A single low-privileged user is enough to map your entire domain, identify Tier 0 assets, and build a full attack graph — without ever touching a tool that triggers EDR. LDAP queries are noisy only if you're watching for them.

💼 Currently exploring new opportunities in Network & Cybersecurity Engineering — open to on-site, hybrid, or remote roles. I deliver hands-on services in network design, firewall deployment (Fortinet, Cisco), Active Directory hardening, ICS/OT security (IEC 62443, NIST), penetration testing, and infrastructure hardening.

#CyberSecurity #ActiveDirectory #RedTeam #PenetrationTesting #pywerview #PowerView #ADSecurity #LDAP #Kerberoasting #PrivilegeEscalation #InfoSec #BlueTeam #OpenToWork #NetworkSecurity #OffensiveSecurity

🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer

🔐 Fortinet Firewall Topology – Secure. Segment. Protect.

A well-designed network is the backbone of strong cybersecurity. This topology using Fortinet demonstrates how to build a secure and scalable infrastructure with proper segmentation and control.

✅ Key Highlights:
• Segmented zones: LAN (Trust), DMZ, and Management Network
• Secure remote connectivity via IPsec VPN
• Dual WAN setup for high availability and backup internet
• Controlled access policies between network zones
• Advanced security features like IPS, Web Filtering, SSL Inspection, and Application Control

🚀 Benefits:
• Enhanced security through network segmentation
• Reliable remote access for branch offices
• Centralized management and monitoring
• Improved resilience with failover internet
Strong network architecture isn’t just about connectivity—it’s about protection, performance, and control.

#CyberSecurity #Networking #Fortinet #Firewall #ITInfrastructure #NetworkSecurity #VPN #ITSupport

🔹 Share 🔹
📱 Channel : @Engineer_Computer