Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.
Did a website pentest - something I did not do for a while. Was very fun and we also had some interesting findings :)
Submitted 7 months ago by shellsharks@infosec.pub to cybersecurity@infosec.pub
Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.
Did a website pentest - something I did not do for a while. Was very fun and we also had some interesting findings :)
What are you normally up to?
Security operating
Sounds like a fun assignment! Glad you got some interesting results!
Working on an Ansible playbook to configure our security baseline over all the network devices we manage.
Can you share any of the baseline that’s not specific to your org/sensitive? What sources are you using as a reference?
I am using the Cisco hardening guide with some tweeks.
cisco.com/…/220270-use-cisco-ios-xe-hardening-gui…
Covers things like only allowing sshv2, enable logging of commands to syslog, disabling the switch web servers.
scytale@lemm.ee 7 months ago
ISO 27002 audit season baby!
PaddleMaster@beehaw.org 7 months ago
Sounds thrilling!!
I’ll be on vacation for our audit next week. I’m thrilled to miss it.