Wireshark for Firewall Rules

Wireshark for Firewall Rules

I found this interesting article here where I learned that it is possible to automatically generate ACLs rules for many common firewalls including (but not limited to). Linux IPtables, Windows Firewall, Cisco IOS, packet filter (I don’t know if this extends to pfSense but I would imagine so since the PF package is what pfSense was originally based on), and more. This can be very useful weather you are trying to allow something or block it. Wireshark has an option…

Read More Read More

My New Discovery in The Suricata pfSense Package

My New Discovery in The Suricata pfSense Package

Hello Everyone, This week I would like to talk about something that has concerned me for quite some time now. As many of you know I have experience with Suricata and the Suricata package for pfSense. As I’ve progressed throughout my cybersecurity class I’ve noticed that they seem to suggest running an IPS on the internal network as well on on the WAN side. Now I’ve been running Suricata on my internal network for a  long time now. However, I was…

Read More Read More

Using Syslog

Using Syslog

Happy Thanksgiving everyone! This week I’ve been hearing quite a bit about Syslog and how much of a help it is when you’ve got multiple servers that need to be constantly monitored. Enter the long standing solution, syslog. Syslog has been around forever and like a lot of network administrators when I first learned about Syslog I didn’t have a need for it. I had so few computers back then that I didn’t see the need. Like so many I…

Read More Read More

NoScript For Firefox

NoScript For Firefox

Hello everyone,   This week I’d like to talk about the NoScript addon which is available for Mozilla Firefox. I’ve been using NoScript for a few weeks and while I find it annoying sometimes. I do find it really nice that I am able to block things like Google Analytics and other similar scripts like that. If I don’t want a script to run on my computer. I don’t run it. Scripts only run if I tell them to run….

Read More Read More

Blockchain in the Election System

Blockchain in the Election System

Hello everyone,   With election day finally here many people are heading out to go vote (and if you haven’t voted yet I encourage you to do so). Many people are concerned about election interference and weather or not you consider this to be a real threat (I’m not going to take sides). There have been a few proposals on what to do about this. But one of the most publicized ideas is to use Blockchain. You may remember hearing…

Read More Read More

OSSIM SEIM Systems

OSSIM SEIM Systems

This week I’ve been doing a lot of research on SEIM systems both as part of the classes that I’m taking and out of my own curiosity. SEIM sounds like a very powerful and useful tool which I have yet to really play with.   Enter AlienVault’s OSSIM, and all of it’s open-source awesomeness. There is a lot of reasons for why an organization (like Aeatacraft) might consider running it because it is a very capable and you can beat…

Read More Read More

Ethical Hacking and the US Power Grid

Ethical Hacking and the US Power Grid

This morning I did what many early-20-year-old-men do: I watched YouTube videos on my phone before getting out of bed this morning. However, unlike many early-20-year-old-men I watch a lot of educational programming as well (although I have been known to watch the occasional stupid video from time to time). This morning I noticed a video that caught my eye: Watch hackers break into the US power grid at first I was skeptical, I figured that it couldn’t possibly be…

Read More Read More

Password Security

Password Security

Hello Everyone,   Being that this is Cyber security mouth and I’ve recently been ramping up my cyber security measures to even higher levels. This week I’d like to talk about my favorite password manager: KeePass. The main thing that I like most about Keepass is that it does not use any of that cloud storage nonsense when it comes to storing your passwords. Yes I know that this means that you need to find a way to store and transfer…

Read More Read More

VeraCrypt for Windows Encryption

VeraCrypt for Windows Encryption

Hello again everyone, I start this week’s post off with a question: How many of you have used or at least heard about TrueCrypt? Now TrueCrypt has long since become an abandoned project. But as is often the case with Open Source software, the long standing project was ported and continues to be supported under a new name. This new name you ask? VeraCrypt. VeraCrypt is a very secure filesystem encryption software that allows users to even do things like…

Read More Read More

Surricatta Logs on pfSense

Surricatta Logs on pfSense

Hello Again everyone, Today I’d like to talk about network logs packet analysis and how truly expensive it can be. First off, I want to make it clear that I am not in any way recommending that you don’t log packets. Logging packets is an essential part of network security and I would argue that it is pretty much impossibe to ensure that your network is secure without doing some form of packet logging (at least in the short term)….

Read More Read More

All About OpenVAS

All About OpenVAS

Hello again everyone, Now you may not like the idea of using vulnerability scanners or other hack tools. However, OpenVAS is VERY powerful tool to anyone who is running nearly any type of server and wants to make sure that it is protected. Now you might be thinking that as long as you keep your machines up-to-date you should be fine. But that is not entirely true. While updates are an important part of protecting your systems misconfiguration is another…

Read More Read More

Is My OpenVPN Traffic Being Decrypted?

Is My OpenVPN Traffic Being Decrypted?

Hello everyone,   As per my previous post about OpenVPN on pfSense I would like to tell you all a problem that I’ve been having recently since I’ve started trying to use it to protect myself on my school’s public WiFi network. You see, I like all college students have a smart phone and I can create my own private wireless hotspot with it. To which I connect my laptop to it while I’m in class so I don’t have…

Read More Read More

pfSense can Protect You Even on the Go

pfSense can Protect You Even on the Go

Hello everyone,   Once again I would like to talk about using pfSense to setup an OpenVPN server which you can use to protect yourself on open and public WiFi networks. You see the problem that I often encounter while on the go is that there are no WiFi networks that I trust. I barely trust my own home WiFi network and I set it up to be very secure and I monitor it constantly! We are told never to…

Read More Read More

ntopng On pfSense

ntopng On pfSense

Today I would like to introduce you all to a very useful package that you can install on pfSense: ntopng. Formally known as ntop, ntopng allows you to Analyze the different traffic on each  interface on your pfSense box. This can be extremely valuable from a security perspective because not only can you see what is happening on your network. You can quite easily get an idea of what exactly your systems are doing. As well as get a sense…

Read More Read More

pfSense for Learning Computer Networking & Cybersecurity

pfSense for Learning Computer Networking & Cybersecurity

Hello everyone!   This week I want to continue talking about pfSense and why I think it is one of the best pieces of software especially for anyone who is looking into (or is already in) a career network administration or cybersecurity. I recently started taking a cybersecurity class and as part of our first lesson we reviewed the basics of how computer networks work and that got me thinking about pfSense and the journey that I’ve taken on my…

Read More Read More