CDN Features w/ Cloudflare

The following is a summary of the security features Cloudflare offers to help mediate risk. Cloudflare is a Content Delivery Network that focuses on simplicity and ease of use. In order to setup, you create DNS records and follow a few incredibly easy steps. But what's this product give you…

SysOps AWS Certification Preparation

This cert was my first after 10 years professionally in the industry. It's a fun one that you shouldn't ever take literal. After using AWS for 5 years I decided achieving and attaining this would be something beneficial. I enjoy using AWS and think in terms of evolving the space…

DUO MFA for RADIUS VPN Connections

This covers implementation for MFA via firewall VPN connections using RADIUS for authorization. 1.) Log into your DUO admin panel and create an application for RADIUS.2.) Install the DUO Auth Proxy client on the server you wish to use to submit the RADIUS requests from. You'll specify the Integration…

AWS Tools

Defensive:Scout2: https://github.com/nccgroup/Scout2 – Security auditing tool for AWS environments (Python)Prowler: https://github.com/toniblyx/prowler – CIS benchmarks and additional checks for security best practices in AWS (Shell Script)CloudSploit: https://github.com/cloudsploit/scans – AWS security scanning checks (NodeJS)CloudMapper: https://github.com/duo-labs/cloudmapper…

Windows 2016 Domain Controller Setup

This guide assumes you have a hyper-visor and VMs and/or physical boxes to support this setup. This guide uses fresh install of Server 2016 fully patched up for reference.Install the following roles by opening up server manager and enabling the following:Active Directory Domain Services DHCP Server DNS…

MSSQL .BAK Encryption

This post goes over TSQL commands to setup and test encrypted backups for MSSQL. Commands provided are intended to be ran on both a Source and Target instance. These should be ran using an SA account to avoid permission issues. If storage paths don't work, just use c:\temp\ and…

Drupal/WordPress Environment w/ Docker

This Tutorial assumes your have Docker Toolbox installed and fully operational.Within Docker Quickstart Terminal get a copy of the latest MySQL image:$docker pull mysqlStart your MySQL container running:$docker run --name mysql -e MYSQLROOTPASSWORD=example -d mysqlGet a WordPress image:$docker pull wordpressGet your WordPress container running and…

Selenium Setup in Visual Studio

This is a generalized guide for configuring Selenium on Windows.Create a directory named Selenium under C:\Copy the directory downloaded from http://docs.seleniumhq.org/download/ in this example I'm setting up the Java specific package.Within IE set all Security Zones to the same protection levelAdd wildcards for…

Chocolatey w/ PsExec for Patch Management

This post covers through deploying Chocolatey to enterprise network devices. The idea is to have a solution for 3rd party product patching that's both free and incredibly efficient. To start you'll need domain admin privileges and just a couple minutes.First, we'll need psexec installed on one machine within the…

FrankenClam for Windows (ClamWin/ClamAV and Yara)

This guide is for piecing together an opensource solution to trigger AV scans upon file upload within Web Apps.Installed Software: http://www.clamwin.com/content/view/249/1/ https://www.python.org/downloads/release/python-371/ https://github.com/VirusTotal/yara/archive/v3.8.1.zip https://github.com/zuphzuph/…