Google Santa In-Depth - a macOS security & logging tool
•
1 like•631 views
Slides for our"Santa In-Depth" talk from University of Utah, MacAdmins Meeting, April 17th 2019. Link: https://apple.lib.utah.edu/april-2019-macadmins-meeting/ "Whitelisting vs. blacklisting security strategies. Both strategies can help to keep applications, infrastructures, and networks secure. But you can’t always whitelist and blacklist at the same time, which means you may need to decide which approach makes the most sense for your needs..... "
Report
Share
Report
Share
Download to read offline
Recommended
osint - open source Intelligence
OSINT is defined by both the U.S. Director of National Intelligence and the U.S. Department of Defense (DoD), as "produced from publicly available information that is collected, exploited, and disseminated in a timely manner to an appropriate audience for the purpose of addressing a specific intelligence requirement.
SOURCE :https://en.wikipedia.org/wiki/Open-source_intelligence
OSINT for Attack and Defense
This document provides an overview of how open-source intelligence (OSINT) techniques can be used both offensively and defensively. It discusses tools like Shodan, Maltego, Google searches, and malware sandboxes that can be leveraged to gather technical information about targets, infrastructure, and indicators of compromise. The document also emphasizes the importance of automation and privacy when conducting OSINT research to enhance attacks or strengthen defenses.
BloodHound 1.3 - The ACL Attack Path Update - Paranoia17, Oslo
At Paranoia17 we publicly announced the release of BloodHound 1.3 - The ACL Attack Path Update. This update brings securable object control to the fore, based on work by Emmanuel Gras and Lucas Bouillot.
Owasp osint presentation - by adam nurudini
Open-Source Intelligence (OSINT) is intelligence collected from public available sources
“Open” refers overt, public available sources (as opposed to covert sources)
Its not related to open-source software or public intelligence
This information comes from a variety of sources, including the social media pages of your company and staff. These can be a goldmine of information, revealing information such as the design of ID badges, layout of the buildings and software used on internal systems.
OSINT Social Media Techniques - Macau social mediat lc
This document summarizes an emerging investigative techniques seminar discussing big data, social networks, and mobile surveillance. It introduces topics like using IP addresses and DNS records to identify suspects. Later sections explain how social media sites and online profiles can provide important evidence, such as user IDs, photos and metadata, and chat histories. The document also discusses privacy concerns around uniquely identifying static IP addresses in the IPv6 system.
Intro to Web3
The document provides an overview of Web3, including its key characteristics of decentralization, trustlessness, and permissionlessness. It discusses blockchain technology and popular applications like Ethereum, DeFi protocols like Uniswap and Compound, and NFT marketplaces like OpenSea. Emerging areas covered include the metaverse, zero-knowledge proofs, and bringing real-world assets onto blockchain networks. The document also outlines the typical technology stack used to build decentralized applications on Web3.
Web5 - Open to Build - Block-TBD
The document discusses plans for a new "Web5" initiative to create a decentralized web that puts individuals in control of their identity and data. The summary is:
1) Web5 aims to create a decentralized web where individuals own their identity and data through technologies like decentralized identifiers (DIDs) and verifiable credentials, rather than relying on centralized platforms.
2) It will use decentralized web nodes to store individuals' data across devices and networks, allowing them to grant access and share information more privately and securely.
3) The initiative aims to launch basic consumer tools by mid-2023 and have a fully-featured platform by late 2023/early 2024 to restore individual control over digital identity and data
BloodHound: Attack Graphs Practically Applied to Active Directory
This document discusses BloodHound, a tool that uses graph databases and analysis to help analyze complex privilege relationships within Active Directory environments. It describes how traditionally these types of analyses were done manually, which was tedious and ineffective for anything but small environments. BloodHound collects data on users, groups, computers and privileges through LDAP and other queries, and then constructs a graph database to allow for easy visualization and identification of attack paths. This helps both offensive and defensive teams more easily understand privilege escalation risks and harden their environments.
Recommended
osint - open source Intelligence
OSINT is defined by both the U.S. Director of National Intelligence and the U.S. Department of Defense (DoD), as "produced from publicly available information that is collected, exploited, and disseminated in a timely manner to an appropriate audience for the purpose of addressing a specific intelligence requirement.
SOURCE :https://en.wikipedia.org/wiki/Open-source_intelligence
OSINT for Attack and Defense
This document provides an overview of how open-source intelligence (OSINT) techniques can be used both offensively and defensively. It discusses tools like Shodan, Maltego, Google searches, and malware sandboxes that can be leveraged to gather technical information about targets, infrastructure, and indicators of compromise. The document also emphasizes the importance of automation and privacy when conducting OSINT research to enhance attacks or strengthen defenses.
BloodHound 1.3 - The ACL Attack Path Update - Paranoia17, Oslo
At Paranoia17 we publicly announced the release of BloodHound 1.3 - The ACL Attack Path Update. This update brings securable object control to the fore, based on work by Emmanuel Gras and Lucas Bouillot.
Owasp osint presentation - by adam nurudini
Open-Source Intelligence (OSINT) is intelligence collected from public available sources
“Open” refers overt, public available sources (as opposed to covert sources)
Its not related to open-source software or public intelligence
This information comes from a variety of sources, including the social media pages of your company and staff. These can be a goldmine of information, revealing information such as the design of ID badges, layout of the buildings and software used on internal systems.
OSINT Social Media Techniques - Macau social mediat lc
This document summarizes an emerging investigative techniques seminar discussing big data, social networks, and mobile surveillance. It introduces topics like using IP addresses and DNS records to identify suspects. Later sections explain how social media sites and online profiles can provide important evidence, such as user IDs, photos and metadata, and chat histories. The document also discusses privacy concerns around uniquely identifying static IP addresses in the IPv6 system.
Intro to Web3
The document provides an overview of Web3, including its key characteristics of decentralization, trustlessness, and permissionlessness. It discusses blockchain technology and popular applications like Ethereum, DeFi protocols like Uniswap and Compound, and NFT marketplaces like OpenSea. Emerging areas covered include the metaverse, zero-knowledge proofs, and bringing real-world assets onto blockchain networks. The document also outlines the typical technology stack used to build decentralized applications on Web3.
Web5 - Open to Build - Block-TBD
The document discusses plans for a new "Web5" initiative to create a decentralized web that puts individuals in control of their identity and data. The summary is:
1) Web5 aims to create a decentralized web where individuals own their identity and data through technologies like decentralized identifiers (DIDs) and verifiable credentials, rather than relying on centralized platforms.
2) It will use decentralized web nodes to store individuals' data across devices and networks, allowing them to grant access and share information more privately and securely.
3) The initiative aims to launch basic consumer tools by mid-2023 and have a fully-featured platform by late 2023/early 2024 to restore individual control over digital identity and data
BloodHound: Attack Graphs Practically Applied to Active Directory
This document discusses BloodHound, a tool that uses graph databases and analysis to help analyze complex privilege relationships within Active Directory environments. It describes how traditionally these types of analyses were done manually, which was tedious and ineffective for anything but small environments. BloodHound collects data on users, groups, computers and privileges through LDAP and other queries, and then constructs a graph database to allow for easy visualization and identification of attack paths. This helps both offensive and defensive teams more easily understand privilege escalation risks and harden their environments.
OSINT - Open Source Intelligence
Open source intelligence, or OSINT, involves finding and analyzing publicly available information to produce actionable intelligence. Some common OSINT tools include Maltego for mapping relationships, AnonPaste Monitor to track leaked data, and social media monitoring on platforms like Twitter and Facebook. A case study example discusses using OSINT to analyze the "Lords of Dharmaraja" criminal network through tools like Nostradamus, which integrates diverse data sources and enables relationship analysis and pattern detection.
Decentralized Identifier (DIDs) fundamentals deep dive
https://ssimeetup.org/decentralized-identifiers-dids-fundamentals-identitybook-info-drummond-reed-markus-sabadello-webinar-46/
Decentralized identifiers (abbreviated as “DIDs”), are the cryptographic counterpart to verifiable credentials (VCs) that together are the “twin pillars” of SSI architecture. In this special IdentityBook.info webinar Markus Sabadello, Founder and CEO of Danube Tech, and Drummond Reed, Chief Trust Officer at Evernym, co-authors of the DID chapter of the “Self-Sovereign Identity:
Decentralized Digital Identity and Verifiable Credentials” book published by Manning will explain all the fundamentals of DIDs. Based on the did chapter of the book, you will learn how DIDs evolved from the work started with VCs, how they are related to URLs and URNs, why a new type of cryptographically-verifiable identifier is needed for SSI, and how DIDs are being standardized at World Wide Web Consortium (W3C). Your guides will be two of the editors of the W3C Decentralized Identifier 1.0 specification: Markus Sabadello and Drummond Reed.
Introduction to Dynamic Malware Analysis ...Or am I "Cuckoo for Malware?"
I'm Cuckoo for Malware provides an introductory overview to Cuckoo Sandbox and Malware Analysis. This talk walks through discussing different types of malware and what they do, to explaining how Cuckoo Sandbox works and how to get the best results from it. The talk will cover how to harden your sandbox against Malware authors attempts to avoid analysis and give ideas for listeners wanting to set up custom environments of their own. The goal of the talk is to allow listeners with enough information so that they can begin analyzing malware in their own Cuckoo-based sandbox environment.
Anonymous credentials with range proofs, verifiable encryption, ZKSNARKs, Cir...
Lovesh Harchandani from Dock presents their approach to anonymous credentials and dives in on the various predicates that can be proven in zero knowledge. In over 90 minutes of discussion, we cover what these cryptographic techniques are, how they enable several important use cases for digital identity credentials, and we stretch James Monaghan's ability to keep up as interviewer by taking a look at the source code which makes it all possible! We show how various zero knowledge primitives we've built can be used in a modular fashion to solve real-world use cases. We cover privacy-preserving signature schemes, zero knowledge attribute equalities, range proofs, and verifiable encryption based on ZK-SNARKs, expressing arbitrary predicates as Circom programs and creating ZK proofs for them and blinded credentials (issuer is unaware of all attributes). For anyone interested in the technical underpinnings of this new frontier of digital identity, this episode is a must!
PharmaLedger: A Digital Trust Ecosystem for Healthcare
Daniel Fritz, Executive Director of the PharmaLedger Association and Marco Cuomo, Director of Tech Products & Innovation at Novartis, will present their SSI journey from the initial ideas, through realization of several Proof of Concepts with DIDs and VCs, to the PharmaLedger initiative. PharmaLedger was a 29 member, 3-year, €22 million project under the EU and EFPIA Innovative Medicine Initiative pursued DIDs with external partners such as the global standards organization GS1 and the Global Legal Identifier Foundation (GLEIF). The project also resulted in the creation of the PharmaLedger Association in 2022, a non-profit Swiss association mandated to launch the first open-source product, electronic Product Information (eLeaflet). The webinar will review some of the use cases and dive a little into the technical architecture adopted in the project.
Verifiable Credentials, Self Sovereign Identity and DLTs
My talk from Crypto Valley Conference 2018 on emerging standards in Self-Sovereign Identity, Technology behind it, Overview of implementations and how to use it with blockchain and DLT systems.
Open source intelligence
Open-source intelligence (OSINT) refers to information gathered from publicly available sources including social media sites, traditional media, maps, government reports, and academic papers. OSINT tools are used to gather intelligence from these sources through activities like searching metadata, websites, and databases. Common OSINT tools mentioned are Maltego for relationships, Google Hacking Database for search operators, Metagoofil for document metadata, Shodan for devices, Spiderfoot for automation, TheHarvester for online profiles, and FOCA for hidden information. While useful, OSINT has limitations like information overload and potential false positives.
An Introduction to Hashing and Salting
This document discusses secure ways to store user credentials and passwords. It introduces hashing and salting as techniques to securely store passwords. Hashing involves generating a unique string from a password, while salting adds a random string to the password before hashing. This prevents hashed passwords from being decrypted if the hash is obtained, and ensures even identical passwords have different hashes when salted differently. The document outlines how hashing and salting of passwords can be implemented when users register and login, providing a secure way to authenticate users without revealing their actual passwords.
Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]
Este documento presenta una charla sobre OSINT (Inteligencia de fuentes abiertas) realizada en 12 horas. Explica las técnicas de OSINT para recopilar información sobre personas u organizaciones a partir de fuentes públicas en Internet sin vulnerar medidas de seguridad. Describe herramientas como motores de búsqueda, análisis de datos personales y redes sociales que permiten realizar investigaciones de inteligencia. Finalmente, muestra ejemplos prácticos de búsquedas avanzadas en Google y Shodan para ilustrar cómo aplicar té
Bitcoin Addresses
1) Bitcoin addresses are generated from public keys through a multi-step process involving hashing, encoding, and adding checksums.
2) Specifically, the public key is hashed using SHA256 and RIPEMD160, then encoded in base58 format.
3) A version byte and checksum are added to the encoded hash to create the final Bitcoin address.
Open source intelligence information gathering (OSINT)
OSINT involves gathering publicly available information from the internet for intelligence purposes. It targets individuals, groups, regions, organizations and topics. The OSINT process involves identifying sources, mining and harvesting data, processing it, and producing a final result. The main objectives of OSINT are to create a smart system that enables entities to know what public information about them is online and how to eradicate it, in order to reduce risks of attacks. OSINT can be used from both offensive and defensive security perspectives.
Open Source Intelligence (OSINT)
Durante l’intervento verranno presentati i cardini del processo di ricerca delle informazioni mediante la consultazione di fonti di pubblico accesso. Sarà illustrata la teoria alla base di questo processo che prevede l’identificazione delle fonti, la selezione e la valutazione del loro contenuto informativo per arrivare infine all’utilizzo stesso dell’informazione estratta. Nella seconda fase della presentazione verranno mostrati i tool e le metodologie per l’estrazione di informazioni mediante l’analisi di documenti, foto, social network e altre fonti spesso trascurate. In ultimo saranno mostrati sistemi in grado di correlare diverse informazioni provenienti dalle fonti aperte e verranno discussi i relativi scenari di utilizzo nonché le possibili contromisure.
U2F/FIDO2 implementation of YubiKey
This document discusses Yubico's implementation of the U2F and FIDO2 authentication protocols. It covers key topics like key generation during registration, signature generation during authentication using an application private key, and the use of attestation certificates to verify the authenticator. Resident keys, PIN support, and extensions are also mentioned as differences between U2F and FIDO2.
Zero Trust Model Presentation
This document discusses Zero Trust security and how to implement a Zero Trust network architecture. It begins with an overview of Zero Trust and why it is important given limitations of traditional perimeter-based networks. It then covers the basic components of a Zero Trust network, including an identity provider, device directory, policy evaluation service, and access proxy. The document provides guidance on designing a Zero Trust architecture by starting with questions about users, applications, conditions for access, and corresponding controls. Specific conditions discussed include user/device attributes as well as device health and identity. Benefits of the Zero Trust model include conditional access, preventing lateral movement, and increased productivity.
Self-Sovereign Identity: Ideology and Architecture with Christopher Allen
https://ssimeetup.org/self-sovereign-identity-why-we-here-christopher-allen-webinar-51/
Internet cryptography and Self-sovereign identity (SSI) pioneer Christopher Allen talks about essential insights and reflections around historical, technological and ethical aspects of Self-Sovereign Identity at the 51st SSIMeetup.org webinar in collaboration with Rebooting the Web of Trust (RWOT) and Alianza Blockchain Iberoamérica as part of the events that took place at RWOT in Buenos Aires (Argentina).
Christopher is an entrepreneur and technologist who specializes in collaboration, security, and trust. As a pioneer in internet cryptography, he’s initiated cross-industry collaborations and co-created industry standards that influence the entire internet. Christopher’s focus on internet trust began as the founder of Consensus Development where he co-authored the IETF TLS internet-draft that is now at the heart of all secure commerce on the World Wide Web. Christopher is co-chair of the W3C Credentials CG working on standards for decentralized identity. Christopher has also been a digital civil liberties and human-rights privacy advisor, was part of the team that led the first UN summit on Digital Identity & Human Rights, and was the producer of a half-dozen iPhone and iPad games, and of Infinite PDF, a non-linear media app.
Identity management and single sign on - how much flexibility
https://skillsmatter.com/skillscasts/13120-identity-management-and-single-sign-on-how-much-flexibility
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Introduction to Ion – a layer 2 network for Decentralized Identifiers with Bi...
https://ssimeetup.org/introduction-ion-layer-2-network-decentralized-identifiers-bitcoin-daniel-buchner-webinar-29/
Microsoft presented in May 2019 in New York the first decentralized infrastructure implementation by a major tech company that is built directly on the Bitcoin blockchain called Ion. Daniel Buchner, who is leading this initiative at Microsoft and a founding member of the Decentralized Identity Foundation, will discuss the culture at Microsoft, how decentralized identity works with Bitcoin and what you need to know to use the Bitcoin blockchain for non-financial transactions.
Ion handles the decentralized identifiers, which control the ability to prove you own the keys to this data.
OSINT: Open Source Intelligence - Rohan Braganza
Speaker is going to conduct hands-on training on how an individual can use Open-source intelligence (OSINT) to collect data from publicly available sources. Speaker will showcase tools and techniques used in collecting information from the public sources.
https://nsconclave.net-square.com/advanced-reconnaissance-using-OSINT.html
Cyber crime types
This document discusses various types of cyber crimes including crimes against individuals, property, organizations and society. It describes causes of cyber crimes such as passion of youngsters, desire for recognition or money, and security issues. It then focuses on specific cyber crimes like unauthorized access, viruses, trojans, hacking, social engineering techniques like phishing and baiting, and spam. Common hacking tools are also outlined. Throughout, methods of prevention and popular examples are provided for each topic.
Social Connections 13 - Troubleshooting Connections Pink
Curious on how to make your Connections PINK environment run smoothly while reducing support effort? Need help debugging and getting to the core of some Connections challenges? Join Nico to find out how to resolve common issues, learn troubleshooting basics and other useful knowledge to ensure an efficient Connections PINK on-premises environment. Level up your debugging skills while learning more about back-end topics such as IBM Cloud private, Kubernetes, Docker as well as Orient Me, Metrics and Connections Customizer. Walk away with Connections PINK best practice tips and tricks to help you provide steady and efficient social capabilities!
IBM Think 2018 - IBM Connections Troubleshooting
Curious about how to make your IBM Connections environment run smoothly while reducing support effort? Need help debugging and getting to the core of some Connections challenges? Join Nico to find out how to resolve common issues, and learn troubleshooting basics and other useful knowledge to ensure an efficient Connections on-premises environment. Level up your debugging skills while learning more about back-end topics such as IBM Cloud Private, Db2, TDI, SSO, Directory and integrations like Docs, CCM, Cognos and FEB. He'll also cover the new PINK features like Orient Me, Metrics and Customizer. Walk away with Connections best-practice tips and tricks to help you provide steady and efficient social capabilities!
More Related Content
What's hot
OSINT - Open Source Intelligence
Open source intelligence, or OSINT, involves finding and analyzing publicly available information to produce actionable intelligence. Some common OSINT tools include Maltego for mapping relationships, AnonPaste Monitor to track leaked data, and social media monitoring on platforms like Twitter and Facebook. A case study example discusses using OSINT to analyze the "Lords of Dharmaraja" criminal network through tools like Nostradamus, which integrates diverse data sources and enables relationship analysis and pattern detection.
Decentralized Identifier (DIDs) fundamentals deep dive
https://ssimeetup.org/decentralized-identifiers-dids-fundamentals-identitybook-info-drummond-reed-markus-sabadello-webinar-46/
Decentralized identifiers (abbreviated as “DIDs”), are the cryptographic counterpart to verifiable credentials (VCs) that together are the “twin pillars” of SSI architecture. In this special IdentityBook.info webinar Markus Sabadello, Founder and CEO of Danube Tech, and Drummond Reed, Chief Trust Officer at Evernym, co-authors of the DID chapter of the “Self-Sovereign Identity:
Decentralized Digital Identity and Verifiable Credentials” book published by Manning will explain all the fundamentals of DIDs. Based on the did chapter of the book, you will learn how DIDs evolved from the work started with VCs, how they are related to URLs and URNs, why a new type of cryptographically-verifiable identifier is needed for SSI, and how DIDs are being standardized at World Wide Web Consortium (W3C). Your guides will be two of the editors of the W3C Decentralized Identifier 1.0 specification: Markus Sabadello and Drummond Reed.
Introduction to Dynamic Malware Analysis ...Or am I "Cuckoo for Malware?"
I'm Cuckoo for Malware provides an introductory overview to Cuckoo Sandbox and Malware Analysis. This talk walks through discussing different types of malware and what they do, to explaining how Cuckoo Sandbox works and how to get the best results from it. The talk will cover how to harden your sandbox against Malware authors attempts to avoid analysis and give ideas for listeners wanting to set up custom environments of their own. The goal of the talk is to allow listeners with enough information so that they can begin analyzing malware in their own Cuckoo-based sandbox environment.
Anonymous credentials with range proofs, verifiable encryption, ZKSNARKs, Cir...
Lovesh Harchandani from Dock presents their approach to anonymous credentials and dives in on the various predicates that can be proven in zero knowledge. In over 90 minutes of discussion, we cover what these cryptographic techniques are, how they enable several important use cases for digital identity credentials, and we stretch James Monaghan's ability to keep up as interviewer by taking a look at the source code which makes it all possible! We show how various zero knowledge primitives we've built can be used in a modular fashion to solve real-world use cases. We cover privacy-preserving signature schemes, zero knowledge attribute equalities, range proofs, and verifiable encryption based on ZK-SNARKs, expressing arbitrary predicates as Circom programs and creating ZK proofs for them and blinded credentials (issuer is unaware of all attributes). For anyone interested in the technical underpinnings of this new frontier of digital identity, this episode is a must!
PharmaLedger: A Digital Trust Ecosystem for Healthcare
Daniel Fritz, Executive Director of the PharmaLedger Association and Marco Cuomo, Director of Tech Products & Innovation at Novartis, will present their SSI journey from the initial ideas, through realization of several Proof of Concepts with DIDs and VCs, to the PharmaLedger initiative. PharmaLedger was a 29 member, 3-year, €22 million project under the EU and EFPIA Innovative Medicine Initiative pursued DIDs with external partners such as the global standards organization GS1 and the Global Legal Identifier Foundation (GLEIF). The project also resulted in the creation of the PharmaLedger Association in 2022, a non-profit Swiss association mandated to launch the first open-source product, electronic Product Information (eLeaflet). The webinar will review some of the use cases and dive a little into the technical architecture adopted in the project.
Verifiable Credentials, Self Sovereign Identity and DLTs
My talk from Crypto Valley Conference 2018 on emerging standards in Self-Sovereign Identity, Technology behind it, Overview of implementations and how to use it with blockchain and DLT systems.
Open source intelligence
Open-source intelligence (OSINT) refers to information gathered from publicly available sources including social media sites, traditional media, maps, government reports, and academic papers. OSINT tools are used to gather intelligence from these sources through activities like searching metadata, websites, and databases. Common OSINT tools mentioned are Maltego for relationships, Google Hacking Database for search operators, Metagoofil for document metadata, Shodan for devices, Spiderfoot for automation, TheHarvester for online profiles, and FOCA for hidden information. While useful, OSINT has limitations like information overload and potential false positives.
An Introduction to Hashing and Salting
This document discusses secure ways to store user credentials and passwords. It introduces hashing and salting as techniques to securely store passwords. Hashing involves generating a unique string from a password, while salting adds a random string to the password before hashing. This prevents hashed passwords from being decrypted if the hash is obtained, and ensures even identical passwords have different hashes when salted differently. The document outlines how hashing and salting of passwords can be implemented when users register and login, providing a secure way to authenticate users without revealing their actual passwords.
Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]
Este documento presenta una charla sobre OSINT (Inteligencia de fuentes abiertas) realizada en 12 horas. Explica las técnicas de OSINT para recopilar información sobre personas u organizaciones a partir de fuentes públicas en Internet sin vulnerar medidas de seguridad. Describe herramientas como motores de búsqueda, análisis de datos personales y redes sociales que permiten realizar investigaciones de inteligencia. Finalmente, muestra ejemplos prácticos de búsquedas avanzadas en Google y Shodan para ilustrar cómo aplicar té
Bitcoin Addresses
1) Bitcoin addresses are generated from public keys through a multi-step process involving hashing, encoding, and adding checksums.
2) Specifically, the public key is hashed using SHA256 and RIPEMD160, then encoded in base58 format.
3) A version byte and checksum are added to the encoded hash to create the final Bitcoin address.
Open source intelligence information gathering (OSINT)
OSINT involves gathering publicly available information from the internet for intelligence purposes. It targets individuals, groups, regions, organizations and topics. The OSINT process involves identifying sources, mining and harvesting data, processing it, and producing a final result. The main objectives of OSINT are to create a smart system that enables entities to know what public information about them is online and how to eradicate it, in order to reduce risks of attacks. OSINT can be used from both offensive and defensive security perspectives.
Open Source Intelligence (OSINT)
Durante l’intervento verranno presentati i cardini del processo di ricerca delle informazioni mediante la consultazione di fonti di pubblico accesso. Sarà illustrata la teoria alla base di questo processo che prevede l’identificazione delle fonti, la selezione e la valutazione del loro contenuto informativo per arrivare infine all’utilizzo stesso dell’informazione estratta. Nella seconda fase della presentazione verranno mostrati i tool e le metodologie per l’estrazione di informazioni mediante l’analisi di documenti, foto, social network e altre fonti spesso trascurate. In ultimo saranno mostrati sistemi in grado di correlare diverse informazioni provenienti dalle fonti aperte e verranno discussi i relativi scenari di utilizzo nonché le possibili contromisure.
U2F/FIDO2 implementation of YubiKey
This document discusses Yubico's implementation of the U2F and FIDO2 authentication protocols. It covers key topics like key generation during registration, signature generation during authentication using an application private key, and the use of attestation certificates to verify the authenticator. Resident keys, PIN support, and extensions are also mentioned as differences between U2F and FIDO2.
Zero Trust Model Presentation
This document discusses Zero Trust security and how to implement a Zero Trust network architecture. It begins with an overview of Zero Trust and why it is important given limitations of traditional perimeter-based networks. It then covers the basic components of a Zero Trust network, including an identity provider, device directory, policy evaluation service, and access proxy. The document provides guidance on designing a Zero Trust architecture by starting with questions about users, applications, conditions for access, and corresponding controls. Specific conditions discussed include user/device attributes as well as device health and identity. Benefits of the Zero Trust model include conditional access, preventing lateral movement, and increased productivity.
Self-Sovereign Identity: Ideology and Architecture with Christopher Allen
https://ssimeetup.org/self-sovereign-identity-why-we-here-christopher-allen-webinar-51/
Internet cryptography and Self-sovereign identity (SSI) pioneer Christopher Allen talks about essential insights and reflections around historical, technological and ethical aspects of Self-Sovereign Identity at the 51st SSIMeetup.org webinar in collaboration with Rebooting the Web of Trust (RWOT) and Alianza Blockchain Iberoamérica as part of the events that took place at RWOT in Buenos Aires (Argentina).
Christopher is an entrepreneur and technologist who specializes in collaboration, security, and trust. As a pioneer in internet cryptography, he’s initiated cross-industry collaborations and co-created industry standards that influence the entire internet. Christopher’s focus on internet trust began as the founder of Consensus Development where he co-authored the IETF TLS internet-draft that is now at the heart of all secure commerce on the World Wide Web. Christopher is co-chair of the W3C Credentials CG working on standards for decentralized identity. Christopher has also been a digital civil liberties and human-rights privacy advisor, was part of the team that led the first UN summit on Digital Identity & Human Rights, and was the producer of a half-dozen iPhone and iPad games, and of Infinite PDF, a non-linear media app.
Identity management and single sign on - how much flexibility
https://skillsmatter.com/skillscasts/13120-identity-management-and-single-sign-on-how-much-flexibility
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Introduction to Ion – a layer 2 network for Decentralized Identifiers with Bi...
https://ssimeetup.org/introduction-ion-layer-2-network-decentralized-identifiers-bitcoin-daniel-buchner-webinar-29/
Microsoft presented in May 2019 in New York the first decentralized infrastructure implementation by a major tech company that is built directly on the Bitcoin blockchain called Ion. Daniel Buchner, who is leading this initiative at Microsoft and a founding member of the Decentralized Identity Foundation, will discuss the culture at Microsoft, how decentralized identity works with Bitcoin and what you need to know to use the Bitcoin blockchain for non-financial transactions.
Ion handles the decentralized identifiers, which control the ability to prove you own the keys to this data.
OSINT: Open Source Intelligence - Rohan Braganza
Speaker is going to conduct hands-on training on how an individual can use Open-source intelligence (OSINT) to collect data from publicly available sources. Speaker will showcase tools and techniques used in collecting information from the public sources.
https://nsconclave.net-square.com/advanced-reconnaissance-using-OSINT.html
Cyber crime types
This document discusses various types of cyber crimes including crimes against individuals, property, organizations and society. It describes causes of cyber crimes such as passion of youngsters, desire for recognition or money, and security issues. It then focuses on specific cyber crimes like unauthorized access, viruses, trojans, hacking, social engineering techniques like phishing and baiting, and spam. Common hacking tools are also outlined. Throughout, methods of prevention and popular examples are provided for each topic.
What's hot (20)
Decentralized Identifier (DIDs) fundamentals deep dive
Decentralized Identifier (DIDs) fundamentals deep dive
Introduction to Dynamic Malware Analysis ...Or am I "Cuckoo for Malware?"
Introduction to Dynamic Malware Analysis ...Or am I "Cuckoo for Malware?"
Anonymous credentials with range proofs, verifiable encryption, ZKSNARKs, Cir...
Anonymous credentials with range proofs, verifiable encryption, ZKSNARKs, Cir...
PharmaLedger: A Digital Trust Ecosystem for Healthcare
PharmaLedger: A Digital Trust Ecosystem for Healthcare
Verifiable Credentials, Self Sovereign Identity and DLTs
Verifiable Credentials, Self Sovereign Identity and DLTs
Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]
Jesús Alcalde & Daniel Gonzalez- - OSINT: La verdad está ahí fuera [rooted2018]
Open source intelligence information gathering (OSINT)
Open source intelligence information gathering (OSINT)
Self-Sovereign Identity: Ideology and Architecture with Christopher Allen
Self-Sovereign Identity: Ideology and Architecture with Christopher Allen
Identity management and single sign on - how much flexibility
Identity management and single sign on - how much flexibility
Introduction to Ion – a layer 2 network for Decentralized Identifiers with Bi...
Introduction to Ion – a layer 2 network for Decentralized Identifiers with Bi...
Similar to Google Santa In-Depth - a macOS security & logging tool
Social Connections 13 - Troubleshooting Connections Pink
Curious on how to make your Connections PINK environment run smoothly while reducing support effort? Need help debugging and getting to the core of some Connections challenges? Join Nico to find out how to resolve common issues, learn troubleshooting basics and other useful knowledge to ensure an efficient Connections PINK on-premises environment. Level up your debugging skills while learning more about back-end topics such as IBM Cloud private, Kubernetes, Docker as well as Orient Me, Metrics and Connections Customizer. Walk away with Connections PINK best practice tips and tricks to help you provide steady and efficient social capabilities!
IBM Think 2018 - IBM Connections Troubleshooting
Curious about how to make your IBM Connections environment run smoothly while reducing support effort? Need help debugging and getting to the core of some Connections challenges? Join Nico to find out how to resolve common issues, and learn troubleshooting basics and other useful knowledge to ensure an efficient Connections on-premises environment. Level up your debugging skills while learning more about back-end topics such as IBM Cloud Private, Db2, TDI, SSO, Directory and integrations like Docs, CCM, Cognos and FEB. He'll also cover the new PINK features like Orient Me, Metrics and Customizer. Walk away with Connections best-practice tips and tricks to help you provide steady and efficient social capabilities!
(ATS6-PLAT07) Managing AEP in an enterprise environment
Deployments can range from personal laptop usage to large enterprise environments. The installer allows both interactive and unattended installations. Key folders include Users for individual data, Jobs for temporary execution data, Shared Public for shared resources, and XMLDB for the database. Logs record job executions, authentication events, and errors. Tools like DbUtil allow backup/restore of data, pkgutil creates packages for application delivery, and regress enables test automation. Planning folder locations and maintenance is important for managing resources in an enterprise environment.
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Habitat intro for CodeMonsters. For the code used in the demo, see https://github.com/lnxchk/container_sched_backend/
CollabSphere 2020 Live - Virtual, Faster, Better! How to deploy HCL Notes 11....
Virtualizing HCL Notes 11.0.1 FP1 (incl. Language Packs, Fix Packs, Connections Plugins for Notes and more) is an effective way to standardize your Notes client infrastructure, reduce costs for workstation hardware and give your users a consistent experience. In this session, you will learn how to implement, configure and tune HCL Notes 11.0.1 FP1 on platforms like Citrix XenApp/XenDesktop and get the most out of it by dramatically reducing start-up times (up to 70%), bringing a much better performance and increasing the stability into the Notes client. Beside a live demo on what we call “The Workspace (folder) Improvement” you'll also get some worst practices stories as Chris shares his experiences from real-world client virtualization projects, how these stories can help you and a detailed recipe on ”How to run the Installation and initial configuration of Notes in the best possible way for your very own infrastructure”.
CollabSphere 2020: INF111 - Virtual, Faster, Better! How to deploy HCL Notes ...
Speaker: Christoph Adler, Senior Consultant, panagenda
Abstract: Virtualizing HCL Notes 11.0.1 FP1 (incl. Language Packs, Fix Packs, Connections Plugins for Notes and more) is an effective way to standardize your Notes client infrastructure, reduce costs for workstation hardware and give your users a consistent experience. In this session, you will learn how to implement, configure and tune HCL Notes 11.0.1 FP1 on platforms like Citrix XenApp/XenDesktop and get the most out of it by dramatically reducing start-up times (up to 70%), bringing a much better performance and increasing the stability into the Notes client. Beside a live demo on what we call “The Workspace (folder) Improvement” you'll also get some worst practices stories as Chris shares his experiences from real-world client virtualization projects, how these stories can help you and a detailed recipe on ”How to run the Installation and initial configuration of Notes in the best possible way for your very own infrastructure”.
Stream Processing with Apache Kafka and .NET
Presentation from South Bay.NET meetup on 3/30.
Speaker: Matt Howlett, Software Engineer at Confluent
Apache Kafka is a scalable streaming platform that forms a key part of the infrastructure at many companies including Uber, Netflix, Walmart, Airbnb, Goldman Sachs and LinkedIn. In this talk Matt will give a technical overview of Kafka, discuss some typical use cases (from surge pricing to fraud detection to web analytics) and show you how to use Kafka from within your C#/.NET applications.
Securing Hadoop @eBay
eBay has large, multi-purpose Hadoop clusters with many petabytes of data. eBay Inc?s many subsidiaries and applications give rise to fascinating, complex scenarios for authentication, audit, access control, data protection, data safety, and privacy. To fulfill these complex requirements, security is enabled on Hadoop clusters at eBay. We have been experimenting with and implementing in our production systems several techniques to 1) Set up and operate large clusters (thousands of nodes) efficiently and effectively for a thousand users, and 2)Enable security transparently without impacting user jobs or over-burdening users with inconvenient restrictions Based on our experiments, we have assembled some effective ?best? practices for deploying, operating and using secure Hadoop?clusters. In this presentation, we explain these methods and rules-of-thumb that efficiently and effectively: 1)Set up reliable, scalable Infrastructure to enable strong security for large clusters 2)Set up a very large secure Hadoop cluster in a scalable, zero-touch automated way 3)Update software and configuration on the cluster efficiently while minimizing ?drift? among machines 4)Keep Hadoop services up and running with minimum human intervention 5)Manage user Access to Hadoop clusters? 6)Control access to data and other resources 7)Process highly confidential data using map-reduce programs
Apache Kafka - Strakin Technologies Pvt Ltd
The document provides an overview of Apache Kafka. It discusses how LinkedIn faced the problem of collecting data from various sources in different formats. It explains that Apache Kafka, an open-source stream-processing software developed by LinkedIn, provides a unified platform for handling real-time data feeds through its distributed transaction log architecture. The document then describes Kafka's architecture, including its use of topics, producers, consumers and brokers. It also covers how to install and set up Kafka along with examples of using its Java producer and consumer APIs.
PaaSTA: Autoscaling at Yelp
Capacity planning is a difficult challenge faced by most companies. If you have too few machines, you will not have enough compute resources available to deal with heavy loads. On the other hand, if you have too many machines, you are wasting money. This is why companies have started investing in automatically scaling services and infrastructure to minimize the amount of wasted money and resources.
In this talk, Nathan will describe how Yelp is using PaaSTA, a PaaS built on top of open source tools including Docker, Mesos, Marathon, and Chronos, to automatically and gracefully scale services and the underlying cluster. He will go into detail about how this functionality was implemented and the design designs that were made while architecting the system. He will also provide a brief comparison of how this approach differs from existing solutions.
Consul administration at scale
The document provides an overview of Consul administration at scale at Criteo. Key points:
- Criteo uses Consul for service discovery across 35k servers with 3200 services and 260k instances
- A dedicated team of 5 people manages Consul infrastructure and tools 24/7
- Automation is key to make Consul predictable at scale through standardized service registration, ACLs, and automation tools
- Metrics, logs, and monitoring are critical to detect issues with Consul and the services it manages
RNUG - Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Citrix...
Virtualizing HCL Notes 11.0.1 FP2 (incl. Language Packs, Fix Packs, Connections Plugins for Notes and more) is an effective way to standardize your Notes client infrastructure, reduce costs for workstation hardware and give your users a consistent experience. In this session, you will learn how to implement, configure and tune HCL Notes 11.0.1 FP2 on platforms like Citrix XenApp/XenDesktop and get the most out of it by dramatically reducing start-up times (up to 70%), bringing a much better performance and increasing the stability into the Notes client. Beside a live demo on what we call “The Workspace (folder) Improvement” you'll also get some worst practices stories as Chris shares his experiences from real-world client virtualization projects, how these stories can help you and a detailed recipe on ”How to run the Installation and initial configuration of Notes in the best possible way for your very own infrastructure”.
RNUG 2020: Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Ci...
Virtualizing HCL Notes 11.0.1 FP2 (incl. Language Packs, Fix Packs, Connections Plugins for Notes and more) is an effective way to standardize your Notes client infrastructure, reduce costs for workstation hardware and give your users a consistent experience. In this session, you will learn how to implement, configure and tune HCL Notes 11.0.1 FP2 on platforms like Citrix XenApp/XenDesktop and get the most out of it by dramatically reducing start-up times (up to 70%), bringing a much better performance and increasing the stability into the Notes client. Beside a live demo on what we call “The Workspace (folder) Improvement” you'll also get some worst practices stories as Chris shares his experiences from real-world client virtualization projects, how these stories can help you and a detailed recipe on ”How to run the Installation and initial configuration of Notes in the best possible way for your very own infrastructure”.
Open Source Logging and Monitoring Tools
A talk about Open Source logging and monitoring tools, using the ELK stack (ElasticSearch, Logstash, Kibana) to aggregate logs, how to track metrics from systems and logs, and how Drupal.org uses the ELK stack to aggregate and process billions of logs a month.
Open Source Logging and Metrics Tools
This document discusses open-source logging and monitoring tools. It provides an overview of log formats from common daemons like Apache, Nginx, and Varnish. It then discusses shipping logs with Rsyslog and aggregating logs using the ELK stack, including Logstash, Elasticsearch, and Kibana. The document includes configuration examples and demonstrates parsing log data with Grok.
The SaltStack Pub Crawl - Fosscomm 2016
SaltStack is an open source configuration management and orchestration tool. It allows users to provision, deploy, and manage infrastructure and applications across multiple cloud and virtual systems. SaltStack uses a master-minion architecture with a master server to control and manage minions (agent servers). Key features include remote execution, configuration management, orchestration abilities, and a communication bus to manage infrastructure at scale.
Aci dp
This document describes the installation and configuration of a network intrusion detection system using Snort and ACID. It outlines the software components used including Snort, ACID, MySQL, PHP, IIS and WinPcap. It then details the process of setting up the test network, installing each component, configuring Snort and ACID settings, and testing the system by generating traffic and viewing alerts.
Monitoring at/with SUSE 2015
Thousands of running services on hundreds of machines ask the admins to pay attention. At all times, on all channels, with all available software packages that openSUSE has to offer.
Lars does not only keep an eye on all devices inside SUSE R&D, he is also maintaining some of the biggest packages in the server:monitoring repository like Nagios, Icinga, Shinken, check_mk, mod_gearman, Naemon, PNP4Nagios or the monitoring-plugins (and others).
The integration of some of those packages into a complex, secure and high available monitoring setup together with some tips and tricks and insights into the SUSE R&D infrastructure will be demonstrated.
Getting Started with Consul
This document provides an overview of getting started with Consul, including:
1. Consul is a tool for discovering and configuring services that is built on Golang and uses 3 basic ports for RPC, HTTP, and DNS.
2. It features service discovery, health checking, key/value storage, and multi-datacenter support.
3. Setup involves downloading the Consul binary, running the agent, and using commands like "consul members" and "consul join" to manage nodes.
Wissbi osdc pdf
Wissbi is an open source toolset for building distributed event processing pipelines easily. It provides basic commands like wissbi-sub and wissbi-pub that allow receiving and sending messages. Filters can be written in any language and run in parallel as daemon processes configured through files. This allows constructing complex multi-stage data workflows. The ecosystem also includes tools like a log collector and metric collector that use Wissbi for transport. It aims to minimize operating effort through a simple design that relies mainly on filesystem operations and standard Unix tools and commands.
Similar to Google Santa In-Depth - a macOS security & logging tool (20)
Social Connections 13 - Troubleshooting Connections Pink
Social Connections 13 - Troubleshooting Connections Pink
(ATS6-PLAT07) Managing AEP in an enterprise environment
(ATS6-PLAT07) Managing AEP in an enterprise environment
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
CollabSphere 2020 Live - Virtual, Faster, Better! How to deploy HCL Notes 11....
CollabSphere 2020 Live - Virtual, Faster, Better! How to deploy HCL Notes 11....
CollabSphere 2020: INF111 - Virtual, Faster, Better! How to deploy HCL Notes ...
CollabSphere 2020: INF111 - Virtual, Faster, Better! How to deploy HCL Notes ...
RNUG - Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Citrix...
RNUG - Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Citrix...
RNUG 2020: Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Ci...
RNUG 2020: Virtual, Faster, Better! How to deploy HCL Notes 11.0.1 FP2 for Ci...
More from Henry Stamerjohann
MacSysAdmin Conference 2019 - Logging
LOGGING - About Needles in the Modern Haystack
https://www.macsysadmin.se/program.html
Every once in a while you'll read "collect the log files". How will this work with your Cloud Service, Identity provider, and SaaS solution? What's the challenges and what are the options at hand when monitoring macOS effectively for compliance?
In this session we talk about practices in storing and retrieving event information for monitoring, and review applications to build and process rich audit trails. This session aims to share our experiences made with commercial and open source backends applied to various client scenarios.
JamfNation Roadshow Frankfurt-2019 - Security & Business Intelligence
This document provides an overview of inventory, endpoint security, and identity/authentication topics for Jamf Pro. For inventory, it discusses using Jamf Pro and third-party tools to analyze device data and generate reports. For security, it outlines macOS hardening techniques, using Jamf Pro capabilities and additional tools for monitoring, auditing, and analytics. For identity, it recommends using centralized directory services and single sign-on for Jamf Pro along with multifactor authentication and smart cards for endpoints. The document promotes extending Jamf Pro with additional integrations and services.
Zentral QueryCon 2018
Learn about core functions and architecture of Zentral. Zentral is a open source hub to process event streams from osquery and other sources into the ElasticStack. Besides support for distinct osquery features like file carving, Zentral provides numerous integrations for inventory acquisition and alerting.
Building your macOS Baseline Requirements MacadUK 2018
Slides from 2018 MacAD.UK confernce
Synopsis: https://www.macad.uk/speaker/henry-stamerjohann/
When tasked with (re)building a security baseline for macOS clients, where do you start?
There’s obviously decisions to be made about what’s feasible in your organization (beyond if admin privileges should be the default). You need to weigh system stability and security with end-user productivity. Luckily for the macOS platform a rich ecosystem of tools exist to fill in the gaps and general guidance is available. The crucial part of making mindful and informed decisions is to first aggregate data from your IT environment. You can then decide what configurations to deploy and run recurring compliance checks based on an appropriate strategy. This session will cover fundamentals, highlight advanced considerations, and outline practical examples to apply when you’re conducting a (new) baseline for macOS clients.
Zentral - what's new? - MacDevOps:YVR 2017
This document discusses Zentral, an open source tool for collecting and analyzing event data from devices. It can integrate with tools like Munki, OSQuery, and Santa to collect both internal device events and external events from systems like syslog. The collected event data can be filtered and sent to notification services or used to trigger actions. Support options for Zentral include community support on GitHub or paid support contracts.
Zentral london mac_ad_uk_2017
Zentral is an open source tool that aggregates system logs, events, and inventory data from various sources like osquery, Santa, Munki, Jamf Pro, and ELK. It allows filtering and custom actions on events. The demo shows how Zentral can connect Jamf Pro and osquery to detect configuration changes, trigger remediation, and provide an audit trail of management activities across an organization's endpoints and servers.
Zentral presentation MacAdmins meetup Univ. Utah
Zentral is an open-source event monitoring solution that aggregates inventory data from various management tools and monitors endpoints security events from osquery and Google Santa, allowing users to analyze, filter, and take actions on the collected events through a unified interface. It bridges existing Mac management technologies and security tools in one place for improved visibility, detection, and incident response capabilities. Zentral also supports integrating with additional analytics tools like Elasticsearch, Kibana, Grafana, and notification systems.
Zentral combine power of osquery_santa
MacDevOpsYVR 2016 Talk on osquery, Google Santa technologies managed with Zentral TLS Server and event/filter/action Framework.
http://www.macdevops.ca/
If you are starting to ask questions about your IT infrastructure and want to know what is happening on your clients, osquery - an open source technology, developed by the Facebook engineering team - is an interesting and promising technology. It can be used for intrusion detection, infrastructure reliability or compliance checking. With osquery you gain deep insight into your endpoints. While osquery delivers a broad set of tools, ranging from collecting metrics, state checks and I/O monitoring to file system integrity checks, Google Santa is a security technology developed by the Google MacOps team, that is focused on white- and blacklisting of binaries on macOS. Together, osquery and Santa form the technological base for the Information and Event Monitoring and Notification tool called Zentral. Zentral is a TLS server for deploying the required configurations and aggregating the results. Zentral can filter the results and notify users on any changes, additions and triggered events on the clients monitored. Zentral can also automatically react on those events, and trigger external actions, like creating tickets in a ticketing system or interact with client management software.
Zentral macaduk conf 2016
This document summarizes the work of Henry Stamerjohann at Apfelwerk GmbH on osquery and Santa configuration management and event monitoring tools. It describes distributing osquery configurations, storing events in Elasticsearch, and integrating with tools like Kibana, Prometheus, JAMF, and Munki inventory. It provides overviews of the open source osquery and Santa tools, how Zentral can be used for centralized configuration and event processing, and how technologies like Docker are used.
Ansible Meetup Hamburg / Quickstart
Slides 'Brief intro to Ansible' from our Ansible Kickoff Meetup happend on 12/11/2014 at CCC Hamburg. http://www.meetup.com/Ansible-Hamburg/
More from Henry Stamerjohann (10)
JamfNation Roadshow Frankfurt-2019 - Security & Business Intelligence
JamfNation Roadshow Frankfurt-2019 - Security & Business Intelligence
Building your macOS Baseline Requirements MacadUK 2018
Building your macOS Baseline Requirements MacadUK 2018
Recently uploaded
SAP S/4 HANA sourcing and procurement to Public cloud
SAP S4 HANA to Public cloud data object differences
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
Free A4 downloadable and printable Cyber Security, Social Engineering Safety and security Training Posters . Promote security awareness in the home or workplace. Lock them Out From training providers datahops.com
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift
Overview
Dive into the world of anomaly detection on edge devices with our comprehensive hands-on tutorial. This SlideShare presentation will guide you through the entire process, from data collection and model training to edge deployment and real-time monitoring. Perfect for those looking to implement robust anomaly detection systems on resource-constrained IoT/edge devices.
Key Topics Covered
1. Introduction to Anomaly Detection
- Understand the fundamentals of anomaly detection and its importance in identifying unusual behavior or failures in systems.
2. Understanding Edge (IoT)
- Learn about edge computing and IoT, and how they enable real-time data processing and decision-making at the source.
3. What is ArgoCD?
- Discover ArgoCD, a declarative, GitOps continuous delivery tool for Kubernetes, and its role in deploying applications on edge devices.
4. Deployment Using ArgoCD for Edge Devices
- Step-by-step guide on deploying anomaly detection models on edge devices using ArgoCD.
5. Introduction to Apache Kafka and S3
- Explore Apache Kafka for real-time data streaming and Amazon S3 for scalable storage solutions.
6. Viewing Kafka Messages in the Data Lake
- Learn how to view and analyze Kafka messages stored in a data lake for better insights.
7. What is Prometheus?
- Get to know Prometheus, an open-source monitoring and alerting toolkit, and its application in monitoring edge devices.
8. Monitoring Application Metrics with Prometheus
- Detailed instructions on setting up Prometheus to monitor the performance and health of your anomaly detection system.
9. What is Camel K?
- Introduction to Camel K, a lightweight integration framework built on Apache Camel, designed for Kubernetes.
10. Configuring Camel K Integrations for Data Pipelines
- Learn how to configure Camel K for seamless data pipeline integrations in your anomaly detection workflow.
11. What is a Jupyter Notebook?
- Overview of Jupyter Notebooks, an open-source web application for creating and sharing documents with live code, equations, visualizations, and narrative text.
12. Jupyter Notebooks with Code Examples
- Hands-on examples and code snippets in Jupyter Notebooks to help you implement and test anomaly detection models.
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI, built on the robust SAP Business Technology Platform (SAP BTP), is the latest and most advanced version of our AI development, reaffirming our commitment to delivering top-tier AI solutions. Skybuffer AI harnesses all the innovative capabilities of the SAP BTP in the AI domain, from Conversational AI to cutting-edge Generative AI and Retrieval-Augmented Generation (RAG). It also helps SAP customers safeguard their investments into SAP Conversational AI and ensure a seamless, one-click transition to SAP Business AI.
With Skybuffer AI, various AI models can be integrated into a single communication channel such as Microsoft Teams. This integration empowers business users with insights drawn from SAP backend systems, enterprise documents, and the expansive knowledge of Generative AI. And the best part of it is that it is all managed through our intuitive no-code Action Server interface, requiring no extensive coding knowledge and making the advanced AI accessible to more users.
Main news related to the CCS TSI 2023 (2023/1695)
An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers.
The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 .
The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .
Best 20 SEO Techniques To Improve Website Visibility In SERP
Boost your website's visibility with proven SEO techniques! Our latest blog dives into essential strategies to enhance your online presence, increase traffic, and rank higher on search engines. From keyword optimization to quality content creation, learn how to make your site stand out in the crowded digital landscape. Discover actionable tips and expert insights to elevate your SEO game.
Building Production Ready Search Pipelines with Spark and Milvus
Spark is the widely used ETL tool for processing, indexing and ingesting data to serving stack for search. Milvus is the production-ready open-source vector database. In this talk we will show how to use Spark to process unstructured data to extract vector representations, and push the vectors to Milvus vector database for search serving.
AWS Cloud Cost Optimization Presentation.pptx
This presentation provides valuable insights into effective cost-saving techniques on AWS. Learn how to optimize your AWS resources by rightsizing, increasing elasticity, picking the right storage class, and choosing the best pricing model. Additionally, discover essential governance mechanisms to ensure continuous cost efficiency. Whether you are new to AWS or an experienced user, this presentation provides clear and practical tips to help you reduce your cloud costs and get the most out of your budget.
Skybuffer SAM4U tool for SAP license adoption
Manage and optimize your license adoption and consumption with SAM4U, an SAP free customer software asset management tool.
SAM4U, an SAP complimentary software asset management tool for customers, delivers a detailed and well-structured overview of license inventory and usage with a user-friendly interface. We offer a hosted, cost-effective, and performance-optimized SAM4U setup in the Skybuffer Cloud environment. You retain ownership of the system and data, while we manage the ABAP 7.58 infrastructure, ensuring fixed Total Cost of Ownership (TCO) and exceptional services through the SAP Fiori interface.
A Comprehensive Guide to DeFi Development Services in 2024
DeFi represents a paradigm shift in the financial industry. Instead of relying on traditional, centralized institutions like banks, DeFi leverages blockchain technology to create a decentralized network of financial services. This means that financial transactions can occur directly between parties, without intermediaries, using smart contracts on platforms like Ethereum.
In 2024, we are witnessing an explosion of new DeFi projects and protocols, each pushing the boundaries of what’s possible in finance.
In summary, DeFi in 2024 is not just a trend; it’s a revolution that democratizes finance, enhances security and transparency, and fosters continuous innovation. As we proceed through this presentation, we'll explore the various components and services of DeFi in detail, shedding light on how they are transforming the financial landscape.
At Intelisync, we specialize in providing comprehensive DeFi development services tailored to meet the unique needs of our clients. From smart contract development to dApp creation and security audits, we ensure that your DeFi project is built with innovation, security, and scalability in mind. Trust Intelisync to guide you through the intricate landscape of decentralized finance and unlock the full potential of blockchain technology.
Ready to take your DeFi project to the next level? Partner with Intelisync for expert DeFi development services today!
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Inconsistent user experience and siloed data, high costs, and changing customer expectations – Citizens Bank was experiencing these challenges while it was attempting to deliver a superior digital banking experience for its clients. Its core banking applications run on the mainframe and Citizens was using legacy utilities to get the critical mainframe data to feed customer-facing channels, like call centers, web, and mobile. Ultimately, this led to higher operating costs (MIPS), delayed response times, and longer time to market.
Ever-changing customer expectations demand more modern digital experiences, and the bank needed to find a solution that could provide real-time data to its customer channels with low latency and operating costs. Join this session to learn how Citizens is leveraging Precisely to replicate mainframe data to its customer channels and deliver on their “modern digital bank” experiences.
Programming Foundation Models with DSPy - Meetup Slides
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
A Mix Chart displays historical data of numbers in a graphical or tabular form. The Kalyan Rajdhani Mix Chart specifically shows the results of a sequence of numbers over different periods.
Dandelion Hashtable: beyond billion requests per second on a commodity server
This slide deck presents DLHT, a concurrent in-memory hashtable. Despite efforts to optimize hashtables, that go as far as sacrificing core functionality, state-of-the-art designs still incur multiple memory accesses per request and block request processing in three cases. First, most hashtables block while waiting for data to be retrieved from memory. Second, open-addressing designs, which represent the current state-of-the-art, either cannot free index slots on deletes or must block all requests to do so. Third, index resizes block every request until all objects are copied to the new index. Defying folklore wisdom, DLHT forgoes open-addressing and adopts a fully-featured and memory-aware closed-addressing design based on bounded cache-line-chaining. This design offers lock-free index operations and deletes that free slots instantly, (2) completes most requests with a single memory access, (3) utilizes software prefetching to hide memory latencies, and (4) employs a novel non-blocking and parallel resizing. In a commodity server and a memory-resident workload, DLHT surpasses 1.6B requests per second and provides 3.5x (12x) the throughput of the state-of-the-art closed-addressing (open-addressing) resizable hashtable on Gets (Deletes).
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
This case study explores designing a scalable e-commerce platform, covering key requirements, system components, and best practices.
Introduction of Cybersecurity with OSS at Code Europe 2024
I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems.
The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS.
Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application.
I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
Predictive maintenance is a proactive approach that anticipates equipment failures before they happen. At the forefront of this innovative strategy is Artificial Intelligence (AI), which brings unprecedented precision and efficiency. AI in predictive maintenance is transforming industries by reducing downtime, minimizing costs, and enhancing productivity.
GNSS spoofing via SDR (Criptored Talks 2024)
In the realm of cybersecurity, offensive security practices act as a critical shield. By simulating real-world attacks in a controlled environment, these techniques expose vulnerabilities before malicious actors can exploit them. This proactive approach allows manufacturers to identify and fix weaknesses, significantly enhancing system security.
This presentation delves into the development of a system designed to mimic Galileo's Open Service signal using software-defined radio (SDR) technology. We'll begin with a foundational overview of both Global Navigation Satellite Systems (GNSS) and the intricacies of digital signal processing.
The presentation culminates in a live demonstration. We'll showcase the manipulation of Galileo's Open Service pilot signal, simulating an attack on various software and hardware systems. This practical demonstration serves to highlight the potential consequences of unaddressed vulnerabilities, emphasizing the importance of offensive security practices in safeguarding critical infrastructure.
Recently uploaded (20)
SAP S/4 HANA sourcing and procurement to Public cloud
SAP S/4 HANA sourcing and procurement to Public cloud
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
Monitoring and Managing Anomaly Detection on OpenShift.pdf
Monitoring and Managing Anomaly Detection on OpenShift.pdf
WeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation Techniques
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Skybuffer AI: Advanced Conversational and Generative AI Solution on SAP Busin...
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Programming Foundation Models with DSPy - Meetup Slides
Programming Foundation Models with DSPy - Meetup Slides
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
Dandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity server
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
Google Santa In-Depth - a macOS security & logging tool
- 1. Santa In-Depth April-2019-macadmins-meeting by Zentral.Pro Henry Stamerjohann twitter: @head_min
- 2. Zentral Pro Services https://www.zentral.pro • Consultancy • Research & Development • Based in Hamburg, Germany • Creators of Zentral (open source)
- 4. What is Santa? A binary whitelisting/blacklisting system for macOS (>=10.12) • KEXT monitors executions • Userland daemon makes execution decisions, based on rules • GUI agent notifies user (in case of a block decision) • managed via a CLI utility or a sync server • configuration profile required for setup Project on Github: https://github.com/google/santa
- 5. Kernel Extension • install path /Library/Extensions/ • Signed by Google • Notarized soon (according to the developers) • Attention: UAKEL better MDM KEXT whitelisting (required)
- 7. Santa rules • 2 kinds of executable matching: • binary – hash of the executable • certificate – hash of a signature certificate, anywhere in the signature chain • 4 different policies: BLACKLIST / SILENT BLACKLIST WHITELIST REMOVE
- 8. Santa rule extra • Default rules whitelist the executables signed by the same leaf certificates used for santad and launchd, to avoid locking the whole system. • 4 critical binaries trustd, securityd, xpcproxy, ocspd get individual binary whitelisting rules, with extra decision information • 2 different regexes available to respectively blacklist or whitelist executables based on their paths. Note: Only use if no other option is available
- 9. Santa modes There are 2 modes: Monitor the default one and Lockdown. The mode is set in the configuration profile or remotely with a sync server.
- 10. lockdown mode • Nothing runs unless it is approved with whitelist rules • Very restrictive • You have to maintain an up to date list of application hashes or signature certificates • You know exactly what is allowed to run
- 11. monitor mode • Block specific apps with blacklist rules • Unknown apps are allowed and the executions are logged (good & bad) • Less administrative overhead
- 12. CLI santactl Get binary hash and code-signing information: /usr/local/bin/santactl fileinfo </path/to/app>
- 13. CLI santactl Set binary blacklist rule: /usr/local/bin/santactl rule --blacklist --path </path/to/app> /usr/local/bin/santactl rule --blacklist --sha256 <sha256_hash>
- 14. CLI santactl Set binary blacklist rule with custom message: /usr/local/bin/santactl rule --blacklist --path </path/to/app> --message "<custom message>"
- 15. Santa Rule (in action) • User facing alert with details
- 16. Logging 2 destinations for the logs: • logs: • simple structure written to /var/db/santa/santa.log • contain all the information • events: • posted to the sync server to be aggregated and analysed • only the important information (blocked, unknown exec)
- 17. executable - decisions - ALLOW_UNKNOWN – Monitor mode only - ALLOW_BINARY – Not in the events, logs only - ALLOW_CERTIFICATE - Not in the events, logs only - ALLOW_SCOPE - Not in the events, logs only - BLOCK_BINARY - BLOCK_CERTIFICATE - BLOCK_SCOPE - BLOCK_UNKNOWN – Lockdown mode only
- 18. local logs (in action) Decision: ALLOW_CERT
- 19. local logs (in action) Decisions: ALLOW_UNKNOWN, ALLOW_BINARY of a critical system (default rule).
- 20. local logs - file changes monitoring An extra configuration parameter - FileChangesRegex – can be set using the configuration profile (only). All operations on matching files will be logged in the local logs (only): <key>FileChangesRegex</key> <string>^(/private/etc/.*|/Users/Shared/.*)</string>
- 21. FileChangesRegex in the local logs
- 22. uploaded events
- 26. Santa (in action) Quick demo 1. Switch mode to LOCKDOWN 2. Block App - defaults deny 3. Switch mode to MONITORING 4. Allow App launch
- 28. • Lockdown Mode - carfully track what will be blocked
- 30. Santa deployment • Free & open source full sync server projects: • Moroz • Zentral • Upvote • Commercial - remote config & rules: • Fleetsmith
- 35. Thank You !
- 36. ...reach out for R&D, consulting Contact us via: Web: https://www.zentral.pro or Macadmins Slack