What is ZBPF?
--> Zone-Based Policy Firewall allows you to configure stateful firewall implementation on IOS Routers. --> Supports deep packet inspection. --> Zone-Based Policy Firewall works on the concept of logical security zones. --> Security Zones is a logical segmentation of…
Read more
How to Configure Site to Site VPN on Cisco Routers
BR1: 1) Configure the ISAKMP Tunnel From BR1 to BR2 router ( Phase1). BR1(config)# crypto isakmp policy 1 BR1(config-isakmp)# encryption 3des BR1(config-isakmp)# hash md5 BR1(config-isakmp)# authentication pre-share BR1(config-isakmp)# group 2 BR1(config-isakmp)# lifetime 8640…
Read more
WCCP Service Groups
--> A service group combines one or more routers or switches with one or more caching devices for implementing transparent proxy deployment in the network. --> Each and every member of the group need to agree on the rules by specifying their capabilities and configurations…
Read more
Types of Security Operation Centers(SOC) ?
1) Threat Centric SOC --> A threat-centric SOC actively searches for malicious threats in the network. --> New threats can be identified with the help of i) known vulnerabilities 2) threat intelligence feed services 3) malicious anomalies across networks. --> In order t…
Read more
What are the websites to follow for Cyber Security News
1) Cisco Security Blog https://blogs.cisco.com/security 2) F-Secure https://safeandsavvy.f-secure.com 3) Info Security Magazine www.infosecurity-magazine.com 4) McAfee security blog blogs.mcafee.com 5) TALOS www.talosintelligence.com 6) The Hacker News thehackernews.com 7) Th…
Read more
Different types of Password Attacks
Password guessing: --> In password guessing, an attacker can either manually enter passwords or use a software to automate the process. --> Only one attacker is performing this attack. Brute Force Attack --> Brute-force password attacks are performed by using software …
Read more
What is Vulnerability Assessment?
--> Vulnerability refers to a weakness in the system. --> Vulnerability Assessment is a process of testing the network and the information systems for security vulnerabilities in a consistent and repeatable manner. --> It is the important job of an organization's se…
Read more
What is PKI
--> PKI stands for Public Key Infrastructure. --> A PKI is the service framework that provides the base for security services such as encryption, authentication, and non-repudiation. --> A PKI uses mainly two components in order to work, 1) Certificate Authority: CA is…
Read more
Working of SSH
S1: Client connects to the Server and the server sends its public key to the client. S2: Client and Server will negotiate security transforms between them. This negotiation does not occur in an encrypted format. S3: Then Client encrypts session key by using the public key of the…
Read more
What is TCP Session hijacking
--> TCP Session hijacking is the attempt to overtake an already active session between two hosts. --> TCP session hijacking is different from IP spoofing, in which you spoof an IP address or MAC address of another host. With IP spoofing, you still need to authenticate to t…
Read more
What is TCP Syn Flooding Attack?
TCP SYN flooding --> In TCP Syn Flood attack, an attacker sends so many SYN Packets to the server so that can be used to make server incapable of responding to any legitimate client's requests. --> TCP connections that have been started but not finished are called hal…
Read more
What is Nipper?
--> Nipper is the free and open source software used to perform auditing of security configurations of many different device types such as routers, firewalls, and switches of a network infrastructure. --> Nipper stands for Network Infrastructure Configuration Parser. --&g…
Read more
What is Algosec Firewall Analyzer?
--> Algosec is a firewall analyzer provides complete visibility and analysis of advanced network security policies of Firewall, Proxies, and routers. --> Algosec automates and simplifies security operations including troubleshooting, auditing, and risk analysis. --> Al…
Read more
