brencroninNov 7, 20231 min readAgentless Integration of IDS/IPS and Vulnerability DataIntrusion Detection/Protection Systems (IDS/IPS) examine network traffic using rules and signatures. Some of these rules or signatures...
brencroninNov 5, 20233 min readThe Cybersecurity SuriIn the realm of cybersecurity, there is also a 'Suri,' which is the abbreviation for Suricata. Suricata stands as an open-source,...
brencroninOct 25, 20232 min readVulnerability Management - Fragile ScanningCertain devices are considered 'fragile' where aggressive vulnerability scanning could have a risk of impacting the availability of the...
brencroninOct 23, 20234 min readVulnerability Management - Tracking & TreatingIn a previous article I highlighted a framework for vulnerability management program, developed by SANS instructors Jonathan Risto and...
brencroninOct 21, 20236 min readVulnerability Management - Vulnerability PrioritizationIn a prior article, I introduced a vulnerability management program framework known as P.I.A.C.T., developed by SANS instructors Jonathan...
brencroninOct 15, 20235 min readManagement - Performance GoalsManaging people can be tough. One of the pillars of successful management is leading employees to meet the organizations objectives and...
brencroninOct 15, 20237 min readVulnerability Management - The Homonymy of "Scanning"One of the most frequently used terms in cybersecurity is "Scanning." However, this term can encompass various meanings within the...
brencroninOct 14, 20233 min readCybersecurity MetricsMetrics are the lifeblood of business decision-making, cherished by executives who rely on them to steer their organizations toward...
brencroninOct 9, 20232 min readVulnerability Management Program OverviewLet's face it, vulnerability management is a pain! In an online SANS article titled "Vulnerability Management Maturity Model Part I"...
brencroninSep 29, 20234 min readCyber Risk Concepts - Evaluating Security ControlsSecurity controls represent the foundational functions designed to enhance cybersecurity. For instance, a control may involve restricting...
brencroninSep 23, 20233 min readNetwork Security Monitoring (NSM) - Hacker Command & Control (C&C) (C2)Ralph Mudge developer of Cobalt Strike Red Team hacking software outlines from the hackers perspective 4 key processes that need to...
brencroninSep 23, 20232 min readCyber Risk Concepts - Why FAIR provides better analysis and ReferencesThe National Association of Corporate Directors (NACD) emphasizes the need for improved cyber risk information for boards. This includes...
brencroninSep 23, 20234 min readCyber Risk Concepts - Factor Analysis of Information Risk (FAIR) Disclaimer - This article is just an a quick overview of a popular model for evaluating cybersecurity risk called Factor Analysis of...
brencroninAug 22, 202312 min readActive Directory (AD) and Cyber SecurityTo begin dissecting Active Directory (AD), it's important to grasp the concept that a domain essentially constitutes a sizable collection...
brencroninAug 16, 20232 min readVulnerability Management - The Nagging ProblemsNumerous organizations boast robust vulnerability management systems like Nessus, Rapid7, and Qualys, which excel in scanning systems for...
brencroninAug 16, 20233 min readElastic - PricingElastic SaaS pricing is extensively documented. However, when researching the associated concepts, the abundance of information can...
brencroninAug 16, 20232 min readSRE - Golden Signals MatrixWhile overseeing Network Operations Centers (NOCs), I often noticed situations where systems were activated without adequate monitoring...
brencroninAug 14, 20233 min readNetworking - Spanning TreeSpanning Tree Protocol (STP) was developed by Radia Perlman in the mid-eighties. STP was adopted as standard 802.1D. STP was developed...
brencroninAug 7, 202310 min readEncrypted Traffic AnalysisEncrypted Traffic Overview - How Public Key Infrastructure (PKI) works RSA is a lynchpin of Public Key Cryptography. The more I learn...
