Tata鈥檚 Cybersecurity Analyst Job Simulation
Introduction Just like my last two posts, today I鈥檒l be going through Tata鈥檚 job simulation, also available through theforage.com. Where the Mastercard simulator focused on Phishing, and the Deloitte one had a focus on network logs, this simulator is more focused on Identity and Access Management. I鈥檝e not heard of Tata before. After a quick search I found out they鈥檙e an Indian multinational. They look like a Tesla competitor based on how their EVs look. What the company does doesn鈥檛 really matter. A phishing email is a phishing email at the end of the day. We鈥檒l not be looking at Phishing today though (Unfortunately), time to delve into IAM. ...
Mastercard鈥檚 Cybersecurity Virtual Experience
Introduction If you鈥檝e read my last post you鈥檒l know I found a free, self-paced training resource that let you get some experience without needing to leave the house. It turns out that MasterCard has a similar virtual experience available!. These virtual experiences are all run through a platform called theforage.com which seems to offer quite a few of these. Task one: Design a phishing email simulation Here鈥檚 the task overview of this task: ...
Deloitte's Cyber Job Simulator
Introduction Riding off of the high of recently passing my SC-200 I decided to find some free, self-paced training resources while I decide what exam I鈥檒l go for next. Having a quick look around on LinkedIn I stumbled across Deloitte鈥檚 Cyber Job Simulator. From the overview of the course: A risk-free way to experience work on the job with us at Deloitte Australia. Practise your skills with example tasks and build your confidence to ace your applications. ...
CTF Writeup: Brute it
The Brute it room on TryHackMe is an easy-level, brute-forcing focused room. From the amount of questions and questions it seems like a bit of a walkthrough, but that鈥檚 fine by me! Learn how to brute, hash cracking and escalate privileges in this box! Brute-forcing with hydra and cracking hashes with john are things I鈥檝e done before. I鈥檝e not escalated privileges all that often, so I鈥檓 excited to see how we can do this (Linpeas maybe? We鈥檒l see!) ...
CTF Writeup: Corridor
The corridor room on TryHackMe is an easy-level room. As the name suggests, we鈥檒l need to look for IDORs. This should be pretty fun! I鈥檝e mentioned previously that I鈥檓 not the best at red-team based CTFs. I prefer the SOC analyst side of things in general, but I鈥檓 getting a lot more comfortable with these challenges. You have found yourself in a strange corridor. Can you find your way back to where you came? In this challenge, you will explore potential IDOR vulnerabilities. Examine the URL endpoints you access as you navigate the website and note the hexadecimal values you find (they look an awful lot like a hash, don鈥檛 they?). This could help you uncover website locations you were not expected to access. ...