Discover what it takes to be secure on the web by reading these helpful articles. From preventing phishing attacks from using the best firewalls, there’s a lot to learn in this space.
An infecting system to steal the data or disturb the business through malware (Malicious Software) is not a new technique; it’s there since 1988. Since then, it’s growing every month. Today, there is more than 1 billion malware exists. An attacker may use various techniques to inject the malicious code into your website code. Let’s…
There is no rest for the webmaster. There is always something to do to keep websites healthy and to work in optimal conditions. For example, monitor the SSL certificates to check if they are working properly and not expired. The X.509 Public Key Certificates –or, as we all call them, SSL/TLS certificates– have an expiration…
Defacement is one of the famous attack techniques to take down the website and hurt the business. Thousands of sites getting defaced every day. An interesting statistics show more than 270,000 sites got defaced in 2019. What is website defacement? As the word “deface” means, the hacker changes the content, visual appearance of the whole…
Reduce SSL cost and maintenance by using a single certificate for multiple websites using SAN certificate SAN stands for “Subject Alternative Names” and this helps you to have a single certificate for multiple CN (Common Name). You might be thinking this is wildcard SSL but let me tell you – it’s slightly different. In SAN certificate,…
Create, Manage & Convert SSL Certificates with OpenSSL One of the most popular commands in SSL to create, convert, manage the SSL Certificates is OpenSSL. There will be many situations where you have to deal with OpenSSL in various ways, and here I have listed them for you as a handy cheat sheet. In this…
Joomla is the second popular CMS for a website with more than 4.5% of market share and growing. Security is as important as website design and content, but we often ignore this until negatively impacted. Not correctly configured/hardened Joomla server can be vulnerable to many including remote code execution, SQL Injection, Cross-Site Scripting, Information leakage,…
Kali Linux 2.0 was released on 11th August 2015 and comes with more than 600 preinstalled penetration/security tools. Having these preinstalled makes Kali Linux a true platform for the security engineer. Tools are categorized as following:- Information Gathering Sniffing & Spoofing Vulnerability Analysis Exploitation Tools Password Attacks Wireless Attacks Forensic Tools Maintaining Access Hardware Hacking…
Nginx security best practices. Nginx is the fastest growing web server in the industry, and currently, it holds number two position in market share. It was initially released in 2004, and since then it has earned an excellent reputation and used in top million busiest sites. There is a reason for that – Nginx is…
SHA-1 (Secure Hash Algorithm) is a cryptographic hash function produces 160-bit hash value, and it’s considered weak. It’s quite interesting to know – there are 93 % of a website is vulnerable to SHA1 on the Internet. Google has started gradually sunsetting SHA-1 and Chrome version 39 and later will indicate visual security warning on…
A guide to fix Logjam vulnerability in Apache HTTP & Nginx webserver Introduction Logjam vulnerability is found in TLS libraries (EXPORT cipher) on 20th May 2015 by team of computer scientists at CNRS, Inria Nancy-Grand Est, Inria Paris-Rocquencourt, Microsoft Research, Johns Hopkins University, University of Michigan, and the University of Pennsylvania: David Adrian, Karthikeyan Bhargavan, Zakir Durumeric,Pierrick Gaudry, Matthew…
Receive Geekflare articles in your Inbox.
