Trending questions in Cyber Security & Ethical Hacking

0 votes
1 answer

Does code obfuscation give any measurable security benefit?

Code obfuscation involves deliberately making code difficult ...READ MORE

Jan 10, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 545 views
0 votes
1 answer

How do I identify available NFS shares on a remote server?

Depending on the type of server access ...READ MORE

Nov 19, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 3,067 views
0 votes
1 answer

How to Secure Windows Services with Open Ports Without Compromising Functionality?

Securing Windows services that require open ports ...READ MORE

Jan 7, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 690 views
0 votes
1 answer

Why would a replay attack be considered a threat to integrity and not confidentiality?

A replay attack involves an attacker intercepting ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,164 views
0 votes
1 answer

What is recipient non-repudiation in secure email transport?

Recipient non-repudiation in secure email transport refers ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 941 views
0 votes
1 answer

How to validate a digital signature in a PDF?

To validate a digital signature in a ...READ MORE

Nov 13, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,990 views
0 votes
0 answers

Which of the following poses the greatest risk to an organization's computer network security?

I’ve been analyzing several potential risks to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 878 views
+1 vote
1 answer

How can I securely implement AES-256-CBC encryption in Node.js using the crypto module, ensuring proper key and IV management?

Implementing AES-256-CBC encryption securely in Node.js using ...READ MORE

Nov 5, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 3,422 views
0 votes
0 answers

How can I securely log user metadata (IP addresses) without compromising privacy in a web app?

In our web application, we need to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 852 views
0 votes
1 answer

What’s the difference between auditing, accounting, logging, and accountability?

In the context of security and monitoring, ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,139 views
0 votes
1 answer

Is the MFA push notification approval/deny method safe in O365? Concerns over phishing risks and user behavior?

Multi-Factor Authentication (MFA) using push notifications in ...READ MORE

Jan 2, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 804 views
0 votes
1 answer

How can I control the use of admin tools like IP scanners and PsExec to prevent misuse?

Admin tools like IP scanners and PsExec ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 860 views
0 votes
1 answer

Are control categories actually exclusive in security?

In information security, controls are commonly categorized ...READ MORE

Jan 7, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 552 views
0 votes
0 answers

Why Should a Testing Network Be Non-Routable to the Firewall?

I’m setting up a testing network for ...READ MORE

Jan 2, 2025 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 727 views
0 votes
1 answer

How many businesses experienced a Spectre/Meltdown attack?

Even though there aren't exact numbers on ...READ MORE

Nov 29, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,213 views
0 votes
1 answer

Which command-line tools are recommended for SNMP enumeration?

Effective SNMP enumeration is essential for network ...READ MORE

Dec 19, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,343 views
0 votes
1 answer

What are the relative costs involved in making changes to the current organizational security?

Evaluating the costs associated with enhancing your ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 841 views
0 votes
1 answer

Why does NMAP host discovery give different results between NAT and Bridged modes?

The discrepancies in Nmap host discovery results ...READ MORE

Dec 23, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,167 views
0 votes
1 answer

How to interpret cost comparison for changes in organizational security procedures?

Interpreting a report that compares the costs ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 838 views
0 votes
0 answers

Is bcrypt a hashing algorithm?

I’ve been learning about various cryptographic techniques, ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 767 views
0 votes
0 answers

What’s the purpose of the secret in express-session? How does it mitigate threats?

I’ve noticed that the express-session library requires ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 824 views
0 votes
0 answers

How to create an effective threat model using OWASP Threat Dragon: Understanding actors, processes, and trust boundaries?

I’m exploring OWASP Threat Dragon to build ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 822 views
0 votes
1 answer

You need to email a spreadsheet containing personal data. How should you send it?

Here's a step-by-step guide on the best ...READ MORE

Nov 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,263 views
0 votes
1 answer

How can I enumerate valid email addresses using SMTP enumeration techniques?

An essential component of a security audit ...READ MORE

Nov 19, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,880 views
0 votes
1 answer

How Secure Are Virtual Machines?

Virtual machines (VMs) are widely used to ...READ MORE

Jan 3, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 685 views
+1 vote
1 answer

How to exploit open ports?

Exploiting open ports is a common attack ...READ MORE

Nov 7, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 3,077 views
0 votes
1 answer

How to decrypt the encrypted password?

The technique used to guard an encrypted ...READ MORE

Nov 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,279 views
0 votes
1 answer

Why does HTTPS not support non-repudiation?

HTTPS (Hypertext Transfer Protocol Secure) is designed ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 766 views
0 votes
1 answer

How to bypass CVV code?

In order to understand how attackers bypass ...READ MORE

Nov 25, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,286 views
0 votes
0 answers

How can I securely log user metadata without exposing personally identifiable information (PII) in a web app?

We want to improve our logging practices ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 684 views
0 votes
0 answers

How does single sign-on (SSO) enhance security in an architecture?

We are considering implementing Single Sign-On (SSO) ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 680 views
0 votes
1 answer

How is authentication related to the CIA triad?

Authentication is a fundamental component of the ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 937 views
0 votes
1 answer

What is a 2FA attestation object for non-repudiation?

In the context of two-factor authentication (2FA), ...READ MORE

Dec 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 885 views
0 votes
1 answer

Is it possible to get the user groups or other attributes with TACACS authentication?

Yes, the TACACS+ (Terminal Access Controller Access-Control ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 964 views
0 votes
1 answer

Does PCI DSS require an SAQ for each site?

When managing PCI DSS compliance for a ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 713 views
0 votes
0 answers

Why the Something You Know Factor is Considered the Weakest in Authentication?

In authentication systems, the Something You Know factor, ...READ MORE

Jan 2, 2025 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 571 views
0 votes
1 answer

Why isn't AES-256 with Argon2i-based memory hardening used for at-rest file encryption?

Combining AES-256 encryption with Argon2i key derivation ...READ MORE

Jan 2, 2025 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 634 views
0 votes
1 answer

Can information security risks essentially only be triaged according to the CIA triangle?

While the CIA triad—Confidentiality, Integrity, and Availability—provides ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 880 views
0 votes
1 answer

What could cause Nmap host discovery not to show all hosts?

Nmap's host discovery may yield incomplete results ...READ MORE

Dec 23, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,008 views
0 votes
1 answer

What is the overarching term for authentication and authorization?

The overarching term that encompasses both authentication ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 868 views
0 votes
1 answer

What are the best methods to prevent session hijacking?

Preventing session hijacking requires a comprehensive approach ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 902 views
0 votes
1 answer

Why would full disk encryption miss slack space, swap files, and memory?

Full Disk Encryption (FDE) is designed to ...READ MORE

Dec 31, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 649 views
0 votes
1 answer

Who is the creator of the CIA triad?

The CIA triad, representing Confidentiality, Integrity, and ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 837 views
0 votes
0 answers

How to regain SSH access without alerting a threat actor?

Our server may have been compromised, and ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 630 views
0 votes
0 answers

How to prevent lookalike domain phishing and secure client-side code against replication?

We’re concerned about phishing attacks using lookalike ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 624 views
0 votes
0 answers

What is the threat model for mobile security when the attacker has root access?

When an attacker gains root access to ...READ MORE

Dec 30, 2024 in Cyber Security & Ethical Hacking by Anupam
• 18,970 points 607 views
0 votes
1 answer

Are there any solutions available that conform to the AAA protocol?

Yes, there are several solutions that conform ...READ MORE

Dec 26, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 840 views
0 votes
1 answer

How challenging is the CompTIA PenTest+ exam?

The CompTIA PenTest+ certification exam is recognized ...READ MORE

Dec 17, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 1,177 views
0 votes
1 answer

How to achieve non-repudiation?

Non-repudiation ensures that a party cannot deny ...READ MORE

Dec 27, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 737 views
0 votes
1 answer

How to spoof an IP address?

What is IP Address Spoofing? IP address spoofing ...READ MORE

Nov 15, 2024 in Cyber Security & Ethical Hacking by CaLLmeDaDDY
 • 31,280 points 2,533 views
Page:

Most popular tags

"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.