Auditd and sysmon notes
Coming soon (insert 90s-style GeoCities βUnder constructionβ GIF)
;)
NCAE Competition prep notes
See the compiled NCAE notes below. These include:
- 10: Creating user accounts π€
- 11: Managing permissions and sudo users π
- 12: Exploring sudoers and removing users β
- 13: Groups π₯
- 14: Passwords and shadow hashes π₯·
- 16: Network services π
- 17: Exploring network configuration ππ§
- 18: Static network config in Kali / Debian
- 19: Static network config in CentOS / RHEL
- 20: Static network config in Ubuntu
- 22: Temporary, permanent, and flushing IPs π½
- 23: Nc, netcat, ncat, and netcat abuse π
- 24: Web services with Apache π
- 25: Router configuration and MiniHack completion π‘
- 26: ROUTING AND NETWORK CONFIGURING REVIEW π
- 27: SSH basics π
- 28: Public-key cryptography, Modern public-key crypto algorithms, Using and Generating SSH keys π
- 29: Passwordless shell access ποΈπ«
- 30: SSH service through a router ππ‘
- 31: DNS service 101 π
- 32: DNS - Additional zones ππ³
- 33: DNS service through a router ππ‘
- 34: The Rsync service β»οΈ
- 35: Cron and cronjobs π
- 36: Rsync and cron: automatic, secure backups ππ
- 37: The UFW firewall (no iptables anymore woohoo) π₯
- 38: Active connection defense 101 π«π°οΈ
https://github.com/ufsitblue/ufsitblue.github.io/blob/main/ncae/ncae_vids_notes.md
Some TryHackMe Blue team notes
- Sysinternals
- Windows core processes
CyberForce β22 - Notes on Competition Details
Watch this ASAP if youβre a participant in this competition >:]
NIST SP 800-61 SparkNotes
This is an incidence response framework used in US federal computer networks, and is the model we will be using during CyberForce 2022.
Some very useful, conceptual strategies are specified here. Make sure you at least read section 3 of it.
https://github.com/ufsitblue/ufsitblue.github.io/blob/main/notes_NIST_800_61.md <- My notes https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf <- The full document