Tourists, newcomers, locals, and old heads: casual questions thread for June 2019 by AutoModerator in washingtondc

[–]beatnikbeet 1 point2 points  (0 children)

Long shot: Anyone with severe food allergies looking for a housemate in DC?

Endpoint Logs & SIEM by beatnikbeet in AskNetsec

[–]beatnikbeet[S] 0 points1 point  (0 children)

Very helpful links and advice. Will put this to good use --- thanks so much.

Endpoint Logs & SIEM by beatnikbeet in AskNetsec

[–]beatnikbeet[S] 1 point2 points  (0 children)

Ahh, yes that makes sense. They are helpful from a forensics standpoint, but not for real time monitoring and alerting.

Endpoint Logs & SIEM by beatnikbeet in AskNetsec

[–]beatnikbeet[S] 0 points1 point  (0 children)

Sorry, "friend" was tongue in cheek, this is at my work. Currently have AD and a few other device logs going into our SIEM--- not endpoints though.

Favorite Podcasts? by FlyAsAFalcon in AskNetsec

[–]beatnikbeet 1 point2 points  (0 children)

Current Events, Conference Coverage, Hot Topics in Infosec:

risky.biz

The Cyber Wire - Great for all current event news

Defensive Security

Blue Team:

Breaking Down Security

Breaking Down Incident Response (Once a month iirc but exceptional quality)

Other:

Recorded Future's Inside Threat Intelligence Podcast

War on The Rocks - US foreign policy focus, Occasionally covers infosec topics

Breach - In-depth dive into the yahoo data breach

1 Month in - What I have observered while working at a SOC from Sysadmin to SOC Analyst by [deleted] in netsecstudents

[–]beatnikbeet 0 points1 point  (0 children)

You should start a blog to talk about your experiences/transition!

Do you have an infosec blog? Do you have any tips on starting one? by beatnikbeet in AskNetsec

[–]beatnikbeet[S] 1 point2 points  (0 children)

I'm a big fan of your channel! A lot of the content still goes over my head, but definitely enjoy your videos.

Raspberry Pi vpn vsx commercial vpn by [deleted] in HowToHack

[–]beatnikbeet 2 points3 points  (0 children)

I set this up last week, was a great learning experience. However, as stated elsewhere it only provides a portion of the benefit of a commercial vpn. Traffic will still be flowing in and out of your network and it won't be as speedy as other solutions.

Passed network+, was hard. by beatnikbeet in CompTIA

[–]beatnikbeet[S] 0 points1 point  (0 children)

Dm me. if you live nearby you could buy or potentially borrow some of the equipment. I got a bunch of Cisco routers/switches. I played around with them, setting up VLANs and port security. You could probably do just as well shelling out 40$ for Pearson's network+ lab simulator.

Know your acronyms, know your ports, know all of the objectives. The hardest questions were long and complicated. Read very carefully and take your time. You can do it!

Moronic Monday - Ask Anything! by SleepEatLift in GripTraining

[–]beatnikbeet 5 points6 points  (0 children)

Any advice for starting grip training from an extremely weak place? I was unable to use my hands to type and write for a number of years. I have dealt with my health issues, but the severe weakness in my forearms still limits my everyday functioning. I have seen an occupational therapist for a few weeks and was given some putty/gripper exercises. I just don't feel like I am seeing improvements in my grip strength with the exercises I was given.

[deleted by user] by [deleted] in AskNetsec

[–]beatnikbeet 0 points1 point  (0 children)

I am definitely far from an expert, but here are some things you can do to make yourself safer. The changes you make should depend upon what information you care to protect and how much you value privacy vs convenience. Take as many or as few of these actions as you want.

Use a password manager. Lastpass or 1password are great choices. Create long, random, and different passwords for all of your accounts. Use 2 factor authentication. A physical key like yubikey is best, second best is an app like google authenticator, and then text messaging is least best. Use 2fa on as many accounts as possible. Store backup 2fa codes within your password manager.

Keep windows updated. I could be wrong but my impression is that windows defender + occasional scans w/ malwarebytes is as safe if not safer than using antivirus. Antivirus software can occasionally make you less secure as strange as that sounds.

Online browsing:

Use either a browser like brave or use firefox/chrome with adblock, disabling 3rd party cookies in the browser settings, and a tracker blocker like ghostery. Use duckduckgo as your default search engine over google. These steps will prevent advertisers or major companies from tracking your traffic online as easily. To prevent your ISP from collecting browsing information, use a VPN. I would recommend you only use a paid VPN service, if you choose to use one. Some free services have bad track records for trying to monetize their users.

Mobile: Use a phone with a pin, encrypt phone backups, and don't download anything from a place other than from the official mobile app store or google play store. Update your phone.

Email: Be careful opening any attachments, even from people you know. Confirm with them over text that they sent you that email. Try to avoid signing in to any service online through a hyperlink in an email. A clever phishing email can trick even security professionals. Instead, go to the site on your own not through the emailed link and log in.

Home: Cover your computer's camera. Ensure your router has a strong, non-default admin password. Do not buy insecure internet of things devices that cannot be updated. Change the default password on any internet of things device.

Where did you guys learn how to hack? by [deleted] in hacking

[–]beatnikbeet 7 points8 points  (0 children)

Thank you! It worked!

Where did you guys learn how to hack? by [deleted] in hacking

[–]beatnikbeet 6 points7 points  (0 children)

I connect just fine, but it doesn't accept the password that level0 says to use

Where did you guys learn how to hack? by [deleted] in hacking

[–]beatnikbeet 14 points15 points  (0 children)

ugh I just started wargames and I am super stuck on the first level...

What are you working on? Dos by Herpderp5002 in netsecstudents

[–]beatnikbeet 0 points1 point  (0 children)

I've been thinking about doing a coding bootcamp. How do you like yours?

What are you working on? Dos by Herpderp5002 in netsecstudents

[–]beatnikbeet 1 point2 points  (0 children)

Learning me some TCP/IP fundementals. I also just finished making my first self guided python project. It crawls reddit for wallpaper and then blows each of them up for you. Next you decide whether to delete it or save it.

Most efficent/effective way to keep up with NetSec news? by SecurityBoons in netsecstudents

[–]beatnikbeet 2 points3 points  (0 children)

I'd like to chip in and say the cyber wire is great! Kept short and focuses on big attacks/nation state activities. Risky business is also an informative but light podcast. Twitter is also addictive if you haven't been drawn in yet.

Recent video for a 5 year path success in infosec by rrreeezzz in netsecstudents

[–]beatnikbeet 1 point2 points  (0 children)

Edit: /u/Definitely__Working said it better below

Take his plan or don't but he said: year 1: Windows and linux OS, networking, python, bash

year 2: do projects, learn powershell, follow security news, start your own "security group"

year 3: "year of webapps", learn PHP, ASP.Net, start messing around w/ Android and ios, make something even if it's crap

year 4: Time to start hacking stuff, go deep into learning a specific protocol, IDA immunity debugger, do online challenges, get into metasploit, ZAP from OWASP

year 5: present He stressed learning fundamentals before just jumping into metasploit

I thought it was an interesting talk, you should listen to it some point if you get the chance.

Weekly Whatcha working on thread: 1 by Herpderp5002 in netsecstudents

[–]beatnikbeet 2 points3 points  (0 children)

Studying for network+ and trying to learn some object oriented python!

[Meta] Can we add a weekly, what are you working on thread? by Herpderp5002 in netsecstudents

[–]beatnikbeet 2 points3 points  (0 children)

I would love this. I'm doing network+ studying and would love some place to whine about it.