KICS by checkmarx- Keeping Infrastructure as Code Secure The Checkmarx infrastructure-as-code engine (aptly named KICS for Keeping Infrastructure as Code Secure) finds security vulnerabilities, compliance issues, and infrastructure misconfigurations in following Infrastructure as Code technologies: Terraform, Kubernetes, Docker, AWS CloudFormation, and Ansible. As the engine is capable of analyzing any JSON, XML and YML files,Continue reading “Brief on KICS Solution”
Category Archives: Uncategorized
Internet Explorer 11 is officially out of support
On Wednesday, June 15, Internet Explorer has finally reached its end of life. IE browser was originally launched in 1995 for Windows devices. Internet Explorer had a total of 11 versions, with the last one being released in 2013. Microsoft permanently disables browser on most versions of Windows 10 through a Microsoft Edge update. AllContinue reading “Internet Explorer 11 is officially out of support”
passkey support is now available in Chrom
Passkeys are a password replacement that provide faster and easier, and more secure sign-ins to websites and apps across a user’s devices (windows, mobile ,linux). With passkeys, users can authenticate and log into websites using their iPhone or Android devices, replacing the need for a password passkey support is now available in Chrome Stable M108. https://developers.google.com/identity/passkeys/supported-environments SHMUELContinue reading “passkey support is now available in Chrom”
Exchange Emergency Mitigation (EM) service
When you install the September 2021 CU (or later) on Exchange Server 2016 or Exchange Server 2019, the EM service will be installed automatically on servers with the Mailbox role. Microsoft Exchange Emergency Mitigation (EM) provides the fastest and easiest way to temporarily resolve threats to connected on-premise Exchange servers before your IT security teamContinue reading “Exchange Emergency Mitigation (EM) service”
2022 MITRE ATT&CK Evaluations
Released March 31, 2022, the MITRE Engenuity ATT&CK® Evaluations covered 30 vendors and emulated the Wizard Spider and Sandworm threat groups. Two key measurements that are generated from the testing are Overall Detection and Overall Protection. About MITRE Engenuity MITRE Engenuity, a subsidiary of MITRE, is a tech foundation for the public good. MITRE’s mission-drivenContinue reading “2022 MITRE ATT&CK Evaluations”
something went wrong OWA Exchange Server
After apply Security Update (SU) on exchange server you get the error : “something went wrong” (error 500) when you try to work with OWA. The two reasons for this error are : apply the SU without admin elevated permissions (run the msp file form “cmd window” without “run as administrator”) Missing or Expire AuthContinue reading “something went wrong OWA Exchange Server”
mounts_percent_usage_exceeded – Malware Analysis symantec
On Symantec MAA When you try to Upload file for manual scanning you receive error : mounts_percent_usage_exceeded . if you check the ma log you will see “Permission denied…. 500 DELETE” . it means that the worker that delete old samples is not not working as it should because of disk full. The solution : manuallyContinue reading “mounts_percent_usage_exceeded – Malware Analysis symantec”
CLIUSR certificate expiration
What is the CLIUSR Account? With Exchange 2016-19 / Server 2016-19 set up in DAG. you get an alert in ECP that says “The certificate ‘CLIUSR’ on server ‘servername’ is about to expire on ‘date’” The CLIUSR account is a local user account created by the Failover Cluster feature. Windows Server Failover Cluster service uses thisContinue reading “CLIUSR certificate expiration”
Send-As problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
ON Exchange 2010/13/19 when you try to give Send As Permissions for security group to users Group you may get this error : Access is denied. Active directory response: 00000005: SecErr: DSID-03152857, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0 To work around this issue, add the “modify permissions” permission for the Exchange Trusted Subsystem group to theContinue reading “Send-As problem 4003 (INSUFF_ACCESS_RIGHTS), data 0”
OpenID Connect with Pinniped and Keycloak
OpenID Connect (OIDC) allows us to use an Identity Manager Provider (IDP) with our Kubernetes cluster. Keycloak will act as the IDP alongside the Active Directory and Pinniped will provide kubernetes the ability to use the Active Directory users for role assignment. The following article goes over Pinniped installation and configuration, keycloack should be installedContinue reading “OpenID Connect with Pinniped and Keycloak”