Microsoft SCM

2020-07-29T10:40:45+00:00Categories: Microsoft, Networking|Tags: , , , , , , , |

Security Baselines is a standard security configuration that enables the network administrator to compare his/her computer to other systems and adapt it to the standard configuration. For this purpose, Microsoft has provided a free tool called SCM (Security Compliance Manager). SCM is a fast solution based on the simplest type of analysis and can be [...]

IPsec Protocol

2020-07-28T12:31:12+00:00Categories: Network Security|Tags: , , , , , , , , , , , , , , , , , , , , , , |

Internet Protocol Security (IPsec) is a secure network protocol suite that authenticates and encrypts the packets of data to provide secure encrypted communication between two computers/networks. IPsec is usually used to set up VPNs, and it works by encrypting IP packets, along with authenticating the source where the packets come from. Read more about encryption [...]

TOR Project

2020-07-28T08:57:59+00:00Categories: Network Security, Networking|Tags: , , , , , , , , |

We recently had a post about the dark web that mentioned the Tor project.  Tor is free and open-source software for enabling anonymous communication. The name derived from the acronym for the original software project name "The Onion Router". Tor was originally developed by the US Navy in the mid-1990s. Today, most of the funding [...]

About Hashing And Its Applications

2020-07-27T13:01:16+00:00Categories: Network Security|Tags: , , , , , , , , , , , , , , , , , |

We have already mentioned hashing in some posts, for example, in this post. We want to talk more about hashing now. Hashing data is a common practice in computer science and is used for several different purposes. Hashing is the practice of taking a string or input key, a variable created for storing narrative data, [...]

NIST SP 800-50

2020-07-28T12:36:38+00:00Categories: Network Security, Networking|Tags: , , , , , , , , , , , , , , , , |

The National Institute of Standards and Technology (NIST) is a non-regulatory agency of the United States Department of Commerce. This Institute develops technology, metrics, and standards to drive innovation and economic competitiveness at U.S.-based organizations in the science and technology industry. For example, one of NIST’s roles is to develop guidelines on how companies can [...]

NIST SP 800-145 (Cloud Computing Definitions)

2020-07-28T12:39:20+00:00Categories: Network Security, Networking|Tags: , , , , , , , , , , , , , , , |

Recent our posts were about NIST SP 800-137 and NIST SP 800-53A. In this post, we are going to review NIST SP 800-145. The title of this article is: Evaluation of Cloud Computing Services. This publication published in 2010. The PDF file of this publication consists of 32 pages and 7 chapters. These chapters are: Chapter [...]

NIST SP 800–53A

2020-07-28T12:42:00+00:00Categories: Network Security, Networking|Tags: , , , , , , , |

Our previous post was about NIST SP 800-137. In this post, we are going to review NIST SP 800-53A. NIST SP 800-53 is shorthand for the National Institute of Standards and Technology Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organization. NIST SP 800-53 is a set of standards and guidelines [...]

What’s ISCM? (NIST SP 800-137)

2020-07-28T12:43:27+00:00Categories: Network Security|Tags: , , , , , , , , , , , |

First of all, it's better to talk about what NIST is and why the content published by NIST is important. The National Institute of Standards and Technology (NIST) is a non-regulatory agency of the United States Department of Commerce. This Institute develops technology, metrics, and standards to drive innovation and economic competitiveness at U.S.-based organizations [...]

OS Fingerprinting

2020-07-25T12:57:16+00:00Categories: Network Security|Tags: , , , , , , , , , , , , |

If a hacker can determine what type of operating system a targeted computer is running, he or she can work to exploit the vulnerabilities present in that operating system. OS Fingerprinting is used by security professionals and hackers for mapping remote networks and determining which vulnerabilities might be present to exploit. In fact, it is [...]