Silent Wazuh — tuning, event minimization, notifications in Telegram
Recently, I finally got around to studying Wazuh - to make the learning process useful, I set it up for testing in a small hospital and identified the tasks it should…
Security - Articles for the year 2024
Read interesting articles and reviews for the year 2024. Analysis of key events in the "Security" sector
"Element of Selling". Interview with an Internet Advertising Specialist
Immediately after the laws on changing the laws on liability for improper handling of personal data were passed, we at IDX, like everyone who deals with personal data,…
CHP, banks and trees on a scale of 160 to 1: the history of creating a layout for the Standoff cyber battle
The Gramota.ru portal claims that "A layout is an object that accurately reproduces in a reduced size or full size any other object."
How we accelerated the solution of our machine learning task by participating in the Big Mathematical Workshop
Hello, tekkix! We at the Security Analysis Department of the "Astra Group" recently had our first experience participating in the Big Mathematical Workshop, and we would…
Implementation of the "Magma" cipher in RUST
Hello! Today we continue to implement encryption. In this article, we will look at the Magma cipher algorithm, which was developed and used in the USSR.
Configuration-as-Code
Over the past decade, we have realized that manually performing investigation and response processes limits us in speed, which greatly affects our ability to handle the…
Pentesting terminals
On the vast expanses of the network, you can find many publications on the topic of conducting various pentests: stages, tools used, results obtained, reporting, etc.
How to securely erase sensitive information from a database
Why securely erase data at all? The main thing is that the user cannot retrieve it through the DBMS interface. Who cares about data remnants in files, it's not a problem.…
UserGate 7: test results + migration from old versions
In this article, I will talk about a relevant issue for many — migration from UserGate 6 to version 7. After the departure of foreign developers from the Russian market,…
Two camps of C++
There are currently many debates and discussions about the future of C++.
Making a smartphone a Push-To-Talk radio, calling a dispatcher, or sending an SOS with one touch. Review of XCover7 and MIL-STD-810H
The very first Samsung rugged device appeared back in 2011. It looks like a reinforced case and a replaceable battery, which extends the life of the smartphone, but it's…
Alice, Bob, Eve, and Mallory — the incredible life of cryptographic characters
How does a VPN work? How does a service bundle work for reliable and secure data transmission between branches and remote employees? What is quantum communication?
Network Security: What is NTA? And why IDS + DPI + traffic recording ≠ NTA
Hello tekkix, my name is Stanislav Gribanov, I am the product manager of the NDR group of companies "Garda". I have been working in information security since 2010, and…
Three elephants that support logging in Windows
We continue our series of articles on the types and methods of data collectors from endpoints, or, as they are commonly called, agents. In the first article, we got acquainted…
Pentest for the little ones using WinRAR
Attacks using the long-patched WinRAR vulnerability remain relevant for many companies. Let's figure out how a typical attack works, how attackers bypass antivirus software,…
How to hide any data in PNG
Have you ever hidden something inside a PNG?
A few words about malware for Linux and ways to protect your system
If you follow the latest news in the field of IT security, you may have noticed an increase in the number of attacks on the network infrastructure of Linux systems. Among…
Cloud Computing Security
In recent years, there has been a trend towards the use of cloud computing, with companies increasingly preferring it when developing their information infrastructure.
