AAA of Security
Authentication, Authorization, and Accounting
306 docs tagged with "Cybersecurity"
View all tagsAccess Control
Protective measures for C-I-A
ACL Plugin
Using Access Control List (ACL) Plugin in Kong
Acquisition and Procurement
Managing goods and services
Admission Controllers
Kubernetes plugins enforcing API policies
Agreement Types
The different agreement types you'll encounter when working in Cybersecurity
AI Prompt Plugin
Using AI Prompt Plugin in Kong
Alerting and Monitoring
Alert, monitor, and scan
Aligning Security with Business
Wearing two hats
AppArmor
Linux security module for application access control.
Application Deployments
Deploying Cloud Native Applications
Application Lifecycle Management
Application Lifecycle Management
Asset and Change Management
Enhancing resource utilization
Asymmetric Encryption
Using a pair of keys
Attach and Detach Mode
Attach and detaching from containers
Attack Frameworks
Cyber Kill Chain
Attacks
Attacks
Attestation of Findings
Verifying software integrity and authenticity
Audit Logs for Access Monitoring
Audit Logs for Access Monitoring
Audits and Assessments
Internal and external assessments
Authentication and AuthorizationSecurity Primitives
Authentication and Authorization
Authentication Mechanisms
Authentication Mechanisms
Authentication Protocols
PAP, NTLM, Kerberos, and the sorts
Authorization Mechanisms
Authorization Mechanisms
Automating Tasks
Sample tasks to automate
Automation and Orchestration
When to Automate and Orchestrate
Baselines and Standards
Security Baselines and Security Standards
Being Cloud Native
Being Cloud Native
Blockchain
A distributed ledger technology
Bluetooth Attacks
Bluejacking
Bluetooth Vulnerabilities
Bluetooth
Business Continuity
Sustaining operations during disruption
Business Continuity Plan
Sustaining operations during disruption
Certificate Revocation
Verifying and Invalidating
Chain of Custody
The paper trail for evidence handling
Change Process and Components
Change Management Process and Owners
Changing deprecated API versions
Changing deprecated API versions
Cheatsheet: Kubernetes Commands
Cheatsheet: Kubernetes Commands
Choosing Encryption Algorithms
The perfect encryption algorithm
CIA Triad
Confidentiality, Integrity, and Availability
CIS Security Benchmarks
CIS Security Benchmarks
CISSP Preparation
Preparing for the CISSP Exam
Client and Server Security
Security issues on each side
Cloud Native Adoption
Being Cloud Native
Cluster Maintenance
Cluster Maintenance
CMD and ENTRYPOINT
Defining default commands on containers
CNCF Projects
CNCF Projects
Code versus Ciphers
Algorithm for encrypting and decrypting information
Collecting Evidence
Order of Volatility and Data Collection Procedures
Common Hashing Attacks
Common Hashing Attacks
Compliance
Adherence to laws, regulations, standards, and policies
Computer Crimes
Laws protecting against computer crimes
Conducting Investigations
Types of Investigations in Cybersecurity
ConfigMaps
Storing non-sensitive data
Container Best Practices
Container Best Practices
Container Resource Requirements
Container Resource Requirements
Container Sandboxing
Isolating containers for enhanced security
Container Security
Container Security
Containers and Kubernetes
Container Management Challenges
Control Frameworks
COBIT, ISO 27001, NIST 800-53, etc.
Controls Management
Consistently managing security controls
Cryptographic Attacks
Overview
Cryptography Basics
Securing information through encoding
Custom Resource
Custom Kuberenetes resource types
DaemonSets
Container Management Challenges
Data Backups
Backup Types and Considerations
Data Encryption
Encrypting data at rest and in motion
Data Handling
Classifications, Ownership, and Lifecycle
Data Loss Prevention
Identify, monitor, and protect sensitive data
Data Privacy
Generally Accepted Privacy Principles (GAAP)
Data Security
Securing data
Data Security Policies
Framework for ensuring C-I-A
Data States and Types
States, Types, and Classifications of Data
Defense in Depth
Identity and Access Management
Dependencies
Dependencies in Docker Compose
Deployments
Deployments
Destroying Data
Sanitizing and destroying data
Digital Certificate Types
Types of digital certificates for enterprise
Digital Forensics
Investigating devices to uncover evidence
Disable open ports
Disable open ports
Distributed Computing Models
Large-scale parallel and distributed systems
DNS and Web Security
Hierarchical and decentralized naming system
DNS Attacks
Domain Name System
Docker Architecture
Docker Architecture
Docker Cheatsheet
Docker Cheatsheet
Docker Compose
Managing multiple containers
Docker Compose Issues
Docker Compose Issues
Docker Networking
Networking for containers
Docker Objects
Docker Objects
Docker on Windows
Running Docker on Windows
Docker Registry
Where you store and share container images
Docker Swarms
Cluster of nodes working together
Domain Name System (DNS)
Domain Name System (DNS)
DoS Attacks
Overview
DR in the Real-world
Real-world Disaster Recovery
Driver Attacks
Driver
Email Security
Protecting email accounts and systems
Embedded Systems
Specialized computing systems with specific functions
Enabling API versions
Enabling API versions
Encryption Tools
Securing data through various methods
Environment Variables
Environment Variables
Error Guides
Error Guides
Error: Failing to Delete CloudFormation Stack
Error: Failing to Delete CloudFormation Stack
Escalation and Notification
Act immediately, contain the situation
Escrow, Recovery, and Stretching
Ways to store, recover, and secure keys
etcd Default Server Port
etcd Default Server Port
Evidence Types
Types of Evidence in Cybersecurity
Evolution of Security
Security Information and Event Management
Execution and Escalation
Overview
Firewalls
Firewalls - Its uses and types
Gap Analysis
Current performance versus desired performance
Governance
Overall management of the organization's IT resources
Governance Elements
Policies, Standards, Procedures, and Guidelins
HA and DR
High Availability and Disaster Recovery
Hardware Security
Securing hardware memory and interfaces
Hashing
Converting data into fixed-size value using a function
IAM Concepts
Identity and Access Management
Identity Federation
SSO,, OAuth, SAML, and OIDC
IDS and IPS
Intrusion Detection and Intrusion Prevention
Import/Export Contols (US)
GDPR, HIPAA,PCI DSS, etc.
Incident Identification
Monitoring is key to detecting signs of incidents
Incident Mitigation
Full mitigation mode to control damage and loss
Incident Response
Summary of Incident Response Terminologies
Incident Response Plan
Processes and tools used in incident response
Indicators of Compromise
Account Lockouts
Infrastructure Controls
Selecting Infrastructure Controls
Injection Attacks
LDAP Injections
Inputs and Port Mapping
Inputs and Port Mapping
Install Docker Compose
Install Docker Compose
Integrations and APIs
Combining into one comprehensive system
Intellectual Property Protection
Protecting the legal rights if creators and owners
IP Addressing
Learn the basics of Networking
IR Models and Exercises
Incident Response Models and Exercises
Jobs and CronJobs
Jobs and CronJobs
Kubeconfig File
Kubeconfig File
Kubelet Security
Kubelet Security
Kubernetes API
Container Management Challenges
Kubernetes API Objects
Kubernetes API Objects
Kubernetes Cluster
Container Management Challenges
Kubernetes Dashboard
Kubernetes Ecosystem
Kubernetes Ecosystem
Kubernetes in the Cloud
Kubernetes in the Cloud
Kubernetes Ingress
Kubernetes Ingress
Kubernetes Networking
Kubernetes Networking
Kubernetes Patterns
Kubernetes Patterns for Application Developers
Kubernetes Services
Services, ClusterIP, NodePort, and LoadBalancers
Labels, Selectors, and Annotations
Labels, Selectors, and Annotations
Layer-2 Attacks
ARP Cache Poisoning
Least Privilege Principle
Least Privilege Principle
Lessons Learned Sessions
Reflect and Improve
Limit Node Access
Limit Node Access
Linux Capabilities
Leveraging linux features
Linux Kernel Features
The Linux kernel enhances resource management.
Linux Privilege Escalation
Linux Privilege Escalation
LoadBalancers
Distributing traffic across devices
Logging
Container Logging
Logging
Centralizing and Investigating Logs
Logging Tools
Tools for Logs
Logical Access
Electronic methods to restrict access
Malware
Overview
Management Reviews
Management Reviews and Approval
Manifests
Configuration file for resources
Minimize Base Image Footprint
Best practices for securing container images
Minimize IAM Roles
Minimize IAM Roles
Mobile Assets Deployment
BYOD, COPE, and CYOD
Mobile Systems
The different types of mobile communications systems
Mobile Vulnerabilities
Overview
Mutable and Immutable Infrastructure
Mutable and Immutable Infrastructure
NAT and PAT
NAT and PAT
Network Appliances
Network Appliances
Network Attacks
Man-in-the-Middle
Network Cabling
Physical, logical, and secure ports
Network Devices
Routers, switches, WAPs, and Firewalls
Network Policy
Network Policy
Network Traffic Flow
Packet Captures and the sorts
Networking Fundamentals
Learn the basics of Networking
Networking Models
The different networking models
NIST 800-34 Revisions 1
NIST Definitions from 800-34 Revisions 1
nodeSelectors and nodeAffinity
nodeSelectors and nodeAffinity
On-Path Attacks
Overview
On-Premise Architecture
Securing on-premise datacenters
One-way and Mutual SSL
Authenticating client and server communication
Open Policy Agent
Enforcing policies across systems
OS Vulnerabilities
Overview
Other Attacks
Cross-Site Scripting
Other Technologies
Different types of secure architectures
Outsmarting Threat Actors
Overview
Overflow Attacks
Overview
Overview
Below are some common attacks which I've noted down for the CompTIA and CISSP exams:
OWASP Top Ten
The OWASP Top 10 is a standard awareness document for developers and web application security.
Password Attacks
Overview
Penetration Testing
Simulated cyber attack
Persisting Data
Persisting Data
Phases of Digital Forensics
Identification, Collection, Analysis, and Reporting
Physical Access
Tangible security measures
Pod Affinity
Container Management Challenges
Pod Operations
Container Management Challenges
Pod Security Admission
Pod Security Policies
Security rules for pod deployments
Pods
The building blocks of Kubernetes
Ports and Protocols
Physical, logical, and secure ports
Post Deployments
Product is live. What's next?
Pre-requisites for Kubernetes Labs
Preserving Evidence
Preservation of Evidence
Privilege Access Management
Implementing Principle of Least Privilege
Probes and Multi-Container Pods
Probes and Multi-Container Pods
Protecting Data
Protecting and Mishandling Data
Proxy and Port Forwarding
Kubectl Proxy and Port Forwarding
Proxy Caching Plugin
Using Proxy Caching plugin in Kong
Proxy Servers
Learn what proxy is
Public Key Infrastructure
Using asymmetrical key pairs
Race Conditions
Overview
RAID
Redundant Array of Independent Disks
Reconnaisance in Pentesting
Phase 1 of Penetration Testing
Recovery and Reconstitution
Restoring to normal operations
Remove Obsolete Packages
Remove Obsolete Packages and Services
ReplicaSets and Scaling
ReplicaSets and Scaling
Responsible Disclosure
Disclosing information in confidence
Restrict Kernel Modules
Restrict Kernel Modules
Restrict Network Access
Restrict Network Access
Risk Management
Managing and Prioritizing Risks
Risk Management Frameworks
CIS, ISO, NIST etc.
Risk Management Process
Identify, assess, and prioritize risk
Role-Based Access Control
Role-Based Access Control
Rollouts and Rollbacks
Rollouts and Rollbacks
Scan Images for Known Vulnerabilities
Detect security vulnerabilities in container images.
SCAP
Security Content Automation Protocol
Scheduling Pods
Scheduling Pods
Seccomp
Filter system calls to enhance application security
Secrets
Storing sensitive information
Securing the Control Plane
Securing Control Plane Communications with Ciphers
Securing the Docker Daemon
Securing the Docker Daemon
Securing the Network
Securing the network infrastructure
Security Awareness
Understanding of potential threats
Security Contexts
Security Contexts
Security Controls
Physical, Technical, Administrative, etc.
Security Design
Security Design Principles
Security Metrics
Measuring efficiency with metrics
Security Models
Security Design Principles
Security Plugins
Using Security Plugins in Kong
Security Policies
Common security policies
Security Policy Framework
Policies, procedures, and controls
Security Primitives
Security Primitives
Security Requirements
Security Design Principles
Service Accounts
Service Accounts
Setting Up Kubernetes the Hard Way
Container Management Challenges
Sharing Data
Sharing Data in Docker Compose
SIEM
Security Information and Event Management
Single Pane of Glass
A central point of access
SNMP
Simple Network Management Protocol
SOAR
Security Orchestration, Automation, and Response
Social Engineering
Overview
Social Engineering Attacks
Overview
SPOF and IT Contingency
SPOF Analysis and IT Contingency Plans
Spoofing Attacks
Overview
SSH Hardening
SSH Hardening
Standards and Frameworks
GDPR, HIPAA,PCI DSS, etc.
Stateless and Stateful
Stateless and Stateful
Static Analysis of User Workloads
Inspect container images for security issues.
Static Pods
Pods managed directly by the kubelet
Status Codes and Restart Policies
Status Codes and Restart Policies
Study Plan
Study Plan for CompTIA Security+
Symmetric Encryption
Using the same key
System Hardening
Hardening and Securing the Infrastructure
Tagging the Image
Adding tags to container images
Taints and Tolerations
Influencing the scheduling of Pods
Terminologies
Summary of cybersecurity terms
The 4C’s of Cloud Native security
The Basics
Identity and Access Management
The Code of Ethics
The ISC2 Code of Ethics
Third-Party Vendor Risks
Potential security from external entities
Threat Actors
Overview
Threat Hunting
Overview
Threat Intelligence
Overview
Threat Modelling
Threat Modelling
Threat Vectors
Overview
Threats
Malware
TLS and IPSec
Transport Layer Security and IP Security
TLS Basics
TLS Basics
TLS in Kubernetes
TLS in Kubernetes
Tor Browser
The Onion Router
Tracing Linux Syscalls
Tracing Linux Syscalls
Troubleshooting Basics
Troubleshooting Basics
Trusted OS
Enhanced security features in real-time
Types of Assessments
Internal and external assessments
Uninstall Docker
Uninstall Docker
Updates and Patches
Managing patches
Using Docker without Root Permission
Using Docker without Root Permission
Validating and Mutating Admission Controllers
Checking and enforcing policies with Admission Controllers
Vendor Assessment
Assessing vendors
Vendor Management
Assessing vendors
Virtual Private Network
Extending a private network over a public one
VLANs
Learn the basics of Networking
Volumes and StorageClass
Volumes and StorageClass
Vulnerabilities
Hardware Vulnerabilities
Vulnerability Management
Identifying Vulnerabilities
Vulnerability Remediation
Response and Remediate
Vulnerability Scans
Vulnerability Scans
Webhooks for External Admission Controllers
Webhooks for validation and modification policies.
What is Docker
Docker containers
Whitelist Allowed Registries
Limit image sources to trusted registries only.
Wireless Attacks
Overview
Wireless Networking
wireless Networking
Wireless Security
Securing wireless infrastructure
Zero Day
Overview
Zero Trust
No one should be trusted by default