Chaotic Security Blog

Finished up the last of the modules for the ISC2 CC training. Took the final assessment and reached 100% understanding so they pretty much say I am ready to go on and take the cert test at this point or move on to another training module. 

Going through another module for HacktheBox and this one covered how to access MongoDB databases using a program called mongosh mongodb.

I don’t understand much about mongoDB but it does show how you can access databases using various tools and databases are the lifeblood of many organizations. They are where just about everything is stored as far as customer information, credit card numbers, company details, and more. They are where the big money can be made and major data can be extracted if not properly protected. 

I signed up for ISC2 certificate for cybersecurity. 

It is a pretty basic cert designed to help people just starting to learn more about cybersecurity and the world therein. As I have been going through the course material it is pretty basic stuff that I have learned so doing pretty well on the assessment and most likely will finish it up this week. Looks like there is also an overall cert you can take a well for bout $200. I don’t know if I will do that I already have my Security+ and CYSA+ but it still has some good refresher information.

I wanted to try working with some more of the Hack the Box lessons this week. The site is more focused on penetration testing. This is still good, as to get a good picture of how threat actors work you want to see how both sides work so that you can start to see indicators of compromise when they are used against a network. 

Hack the Box has labs that are specifically set up to hack into and learn various tools so the tool I was learning about today is usual in hacking unprepared WordPress pages. 

It uses a tool called gobuster which is designed to read the directories for WordPress pages and display them. 

It can use a preprepared wordlist to attempt to find common threads to access. 

So the walkthrough takes you through loading the software and running the word list which finds that active admin.php file. 

With that, you attempt some basic login information for the user/pass and it grants access. 

A fun little experiment and shows the power of tools when it comes to hacking and penetration testing.

Decided to get back into a bit more of the TryHackme.com modules.

Going through the Nmap module and Nmap is a tool that always comes up in most of my studies. So I have seen it here on Tryhackme as well as Hack the Box. It is a great tool to help with the enumeration of networks and to see what devices are active and ports are also available. 

Completed the module and will have to work more with items on my Kali machine. 🙂

Had a good time at the DC404 meetup. Met up with a great couple of people. It is always nice to know some new people come around the community and others there who are willing to talk to them about their roles and journeys. I spent time talking with a few people about how they got into their roles and they gave me some good tips related to updating my LinkedIn, Blog, and Resume regarding Cybersecurity roles. So I am looking forward to working more on that approach. 

Looks like there is an upcoming DC404 meetup this Saturday. I haven’t been to one since last year so I want to get out to this one. I need to work more on my networking and talking with security people in the industry.

Finished up the Udemy AWS course. There was a lot to it and even I don’t fully understand it. I can see how you can specialize in just doing AWS stuff. The course I did was for the basic Cloud Practitioner role, but it seemed to cover the depth and breadth of the whole of the AWS system.  From there you can branch out to the various roles you are interested in.

Been working more with Hackthebox.com. Doing lessons on the academy side has been a fun review, but I also like doing their hacking lab computers. It is more about penetration testing but it reviews the various tools and techniques that you would use to perform hacking like NMap for port scanning and services. A good bit of knowledge there and going through the servers is nice. I also like they have completion write ups so that you don’t get lost or too frustrated when you can’t figure something out. 

Try Hack me.com has gotten a few updates as well. I see they are now offering a SIEM simulation solution. I had been using the one over on Let’s Defend which was nice but I do look forward to checking out the TryHackme version as well.