Procmon (Process Monitor) is “an advanced monitoring tool for Windows that shows real-time file system, Registry and process/thread activity.” This accurately describes what Procmon does, but it do...

Regular expressions (regex) are used to to extract information or patterns from text. They are used by programming languages, AV/EDR software, application whitelisting software, data loss preventio...

## I found myself reading RFC 733 today as I had no idea how long BCC emails had been around. Turns out, it’s a long time (November 21, 1977). In fact, that is when the “Standard for the Format of...

Detecting and preventing the effects of phishing emails has become a primary interest for enterprises and governments today. Often because phishing emails lead to network breaches, ransomware, and ...

In terms of security, we’ve come a long way since the days of Windows XP. Even compared to your typical Windows 7 Enterprise install just a few years ago there have been huge security advancements ...

Often in infosec we get caught up on CVEs, the latest breach, or ransomware. Unfortunately, the other half of the job (project management, documentation, etc) can sometimes get less attention. Admi...

Hey everyone, today we’re back on cipher suites. If you want a refresher of TLS and secure cipher suites overall, check out my previous post. There are many instances in which you’ll need to edit ...

Introduction Today we’re covering some basic but very important elements of AWS Security – Security Groups and Network ACLs. Security Groups Security Groups are a fundamental security feature in...

TLS As of writing (July 2021), there is really only one widely supported, secure protocol for establishing secure communications on the Internet – TLS 1.2. Even Microsoft which has a history of s...

There is just so much to unpack if you really get into the details. Others online have already done a great job answering this question with minute details I wouldn’t have even thought to include i...