wop
Now
•
100%
Small follow up - asked about bag recommendations like a month ago and went with the recommendation from Nasan@sopuli.xyz - Mystery Ranch Catalyst 26l - been really happy so far.
For real-time collab - been in use daily ever since
wop
Now
•
100%
I'll look into it! Appreciate it, Cheers
tools.ittavern.com
Aggregates useful tools for developer and people working in IT. Alternative to CyberChef.
Editing PDF in your browser
Big or small, we make decisions every day. Rules, policies, processes, templates, etc. **How do you document the process and results of your decision making and track changes?** To give you some background, a lot of departments discuss certain topics every two weeks, but nothing is written down - it takes a lot of time and worse, some decisions change every two weeks. I've been trying to fight this battle with OneNote atm and was inspired by some software change management frameworks (wild mix of things): Each decision/problem gets a new page. - What is the question/problem? - Why is this decision necessary? - What are the pros and cons? - Which departments need to be involved? What is the scope? (department, site, country, continent, international, etc.) - What are the alternatives and consequences of not implementing? - plus changelog - plus metadata, such as parties involved, who proposed it, dates, etc. Still a work in progress, but it is a mix of RFC, ADR, and some other frameworks. How do you handle that?
Titles are getting longer and longer.
wop
Now
•
100%
We do. Security/Network > dummy data / files, brainstorming, drafts. Not part of a department-wide process, but rather part of an individual's workflow.
#isso #docker #selfhosting #hugo
wop
Now
•
100%
Gotcha - makes sense. appreciate it.
wop
Now
•
100%
It may be a little late, but do you enjoy cybersecurity? - Chasing ghosts, scrolling through endless lines of logs, fending off threats, responding to incidents in high-stress situations, fighting for budgets, clients and colleagues who just don't care, being the "bad guy" in meetings, and so on.
I've only been there a few months, but there's no light at the end of the tunnel. I'm pretty sure it has something to do with my environment, but I can't see myself doing this for a long time.
Feedback is welcome - as always #ssh #linux #hardening #security
wop
Now
•
100%
I am pretty sure one of our consultants has this Osprey Comet. Looks decent! Wow, the Technonaut looks more like a travel bag than an everyday carry, and man, 400 bucks? And I thought my Veto Pro Pac was expensive.
New article: My Personal Backup Strategy Feedback is welcome! #backup #borg #syncthing
wop
Now
•
100%
Those bags are looking great! Having enough space for tools and a big water bottle. Cheers
wop
Now
•
100%
It seems that I have to drive more often to the office again. Any bag recommendations? What is your favorite brand/ model?
I've been a little bit inactive. Trying to change it again. Most recent article.
wop
Now
•
100%
So, let's assume that you are in an international company and the first and only security person. What are your first steps and projects? It is like really vague, but I'd assume like a SIEM, inventory of the network and all devices, backup situation, maybe even honeypots?
What are your high-prio things that every company should have? Is there even a framework for it?
Feeling kinda lost and I hope you get some guidance in the right direction.
Set up new #FreshRSS instance for now. I want to read more and stay up to date on certain topics and I figured I could give RSS another chance. Stays invite-only for now, but feel free to hit me up if you want to have an account.
Focus on decoding unknown strings.
wop
Now
•
100%
Testing a few CTF platforms to learn more about pentesting. It is interesting, but the learning curve is quite steep.
Not gonna lie, wasn't that fun. Learned a lot, but felt lost multiple times. Probably gets better over time.
Doing some rooms on TryHackMe. Decided to create a write up of one room. Have to work on the format, but it should be fine for now. Feedback is welcome!
I think I've never share one of my favorite articles with you. Creating this was great and it has been a great resource ever since. I use SSH tunnel a lot in troubleshooting sessions and security demonstrations.
I am pleased to announce the launch of: [**forum.ittavern.com**](https://forum.ittavern.com/) More information can be found in [this thread](https://forum.ittavern.com/d/5-welcome-getting-started), but in short I miss the forum culture and want to create an open-minded and sustainable community. I welcome you and look forward to great discussions.
I am happy to share with you the new design of my blog. New logo, new thumbnails, lots of CSS changes and everything is now hosted in a German DC. The goal was to create a clean design and reduce the loading time even further. Feedback is welcome.
wop
Now
•
100%
Currently using HedgeDoc for taking notes, but it is lacking some features, so I am trying to find and host some alternatives and compare them. And I hope I can find some time to play with my Flipper Zero....
wop
Now
•
100%
Does fortigate not have a form of DMVPN like Cisco?
ADVPN (Auto-discovery VPN) seems to be the equivalent. https://docs.fortinet.com/document/fortimanager/7.2.0/single-datacenter-for-enterprise/282533/advpn
Just curious why ISP/third party MPLS? Purely interest.
I guess it was easier at some point? - Taht was way before my time there. But we are going to replace the MPLS part with simple internet-breakout points on location and the the rest with SDWAN.
Also, did you find this purely from user complaining or have monitoring tool?
Purely from users complaining and other departments getting frustrated about why their stuff was not working (e.g. Citrix). The new FW had to be installed in a short time and 'everything' worked fine at first. Problems only occurred after some load was put on the network. We failed - as in network dep - by NOT doing a stress/limit test of the network and finding this problem immediately, and NOT implementing some kind of monitoring that would have notified us of all those lost packets and connections. We caught up, but we should have done it in the first place, because it is necessary.
I’m assuming using third party was supposed to offload the work/config from you?
Do you mean the ISP/MPLS provider? - If so, not really.
wop
Now
•
100%
I want to get into Ansible and I am building a testing env for it - home lab with various switches and routers, Fortinet, Palo, and a proxmox host server and some remote VPS. One of my goals for Q1 '24. Today I am going to prep the switches.
Besides that, I want to host my own NFTY server and I hope that I can get it online within this week.
wop
Now
•
100%
I am currently transitioning into a Security role at work. One question would be: what are the must-have tools for every blue team?
- Vuln-Scanner
- Logging/ SIEM-Server
- ...
wop
Now
•
100%
public key authentication ... is king.
I agree that port knocking won't replace any other hardening method, but I thought I'd look into it since it gets recommended so often. Not a big fan either.
wop
Now
•
100%
Learning things about Wireguard and implement it to secure my internet facing servers.
wop
Now
•
100%
Being using rsync and borg for backups, but rclone is a great alternative and has even more functions.
