Articles with the tag: #security

NetFlow with Elastic-Stack

Written by Stefan on Tue 02 August 2022. Modified on Tue 02 August 2022. Posted in Blog. Tags: #cisco  #network  #security  #netflow  #elastic-stack 

This blog post shows how to setup a NetFlow collector with Elastic-Stack, Fleet and Elastic-Agent. NetFlow data is sent by a Cisco ASA Firewall cluster.

Technischer Schutz und Prozesse bei Datenlecks

Written by Stefan on Sun 24 July 2022. Modified on Wed 03 August 2022. Posted in Blog. Tags: #security 

In diesem Blog-Post beschreibe ich meine technischen Schutzmaßnahmen (Email) und Prozesse, wenn ich von einem Datenleck betroffen bin.

Cisco Wireless Intrusion Detection Events to Elastic-Stack

Written by Stefan on Tue 07 June 2022. Modified on Thu 28 July 2022. Posted in Blog. Tags: #cisco  #network  #security  #wifi  #elastic-stack 

In this blog post I'm showing how to get Wireless Intrusion Detection Events from Cisco's WIDS included in Cisco's Wireless Controllers into an Elastic-Stack.

802.1X Switch port is amber when only IP Phone is connected

Written by Stefan on Sat 21 May 2022. Modified on Thu 28 July 2022. Posted in Blog. Tags: #cisco  #network  #security 

When 802.1X (wired) is configured on a 3750G switch, the port LED is amber when only an IP Phone is connected (mab). When connecting on the IP Phone a downstream device like a laptop (dot1x), the port LED goes to green.

Login-Block (DoS and Dict-Attack Protection) in Cisco IOS

Written by Stefan on Thu 21 April 2022. Modified on Thu 28 July 2022. Posted in Blog. Tags: #cisco  #network  #security 

Cisco offers a method to protect against DoS (Denial-of-Service) and Dictionary attacks for IOS devices called Login-Block.

Mapping of IP addresses blocked by Russia

Written by Stefan on Sun 06 March 2022. Modified on Thu 28 July 2022. Posted in Blog. Tags: #internet  #security 

Mapping of IP addresses blocked by Russia

SiSyPHuS Win 10 Telemetry blocklist for Pi-Hole

Written by Stefan on Wed 16 June 2021. Posted in Blog. Tags: #security 

Based on the latest SiSyPHuS Analysis of BSI I built a small blocklist for Pi-Hole to drop Win 10 Telemetry data collection

Cisco WLC - No secured WebUI after failover switching

Written by Stefan on Thu 10 June 2021. Posted in Blog. Tags: #cisco  #wifi  #security 

Cisco WLC 3504 secured WebUI is not working on Secondary Unit in a failover (SSO) setup. When switched back to the Primary Unit, the secured WebUI is working again. Troubleshooting and solution of this strange behavior.

Some security settings for Apache Web Server

Written by Stefan on Sun 06 June 2021. Posted in Blog. Tags: #security  #apache 

I'm showing in this blog post some security settings for the Apache web server including disabling of Directory Browsing, Server Signature and Server Token.

WiFicalypse 2021

Written by Stefan on Wed 12 May 2021. Modified on Wed 12 May 2021. Posted in Blog. Tags: #wifi  #security  #wificalypse 

WiFicalypse 2021, FragAttacks. Design and Implementation flaws in WiFi.

|  >>  |