N3m3

For anyone planning on sitting for the Sec + exam Here are the resources I used and also some others I didn't use but can still help you 🫡 docs.google.com/document/d/1xO…

It is always the employees that starts this argument The people you’re looking for are not open to work with you because of your offer, so STFU instead of going on global platforms to say false shits about Nigerian talents He said he has 500 available roles, immediately i rushed to check and they only have 79, how is that even close. They can’t even put the amount they pay on the roles they advertised. I’m still asking: all these Nigerian tech companies, what are they doing to produce the standard of talents they want? How many of them are offering paid internships? I know a lady that got into oracle through internship, she was just posting on social media about oracle and they reach out to her and offer her internship. These companies groom talents, what are Nigerian companies doing in that regard? I don’t like putting mouth in all these twitter gbas gbos but don’t go about telling lies about Nigerian talents on global platforms. We all understand the economy and that is why I’m going global instead of working for you, manage it, do with what you have and see how you can maximize their efforts and appreciate them. Don’t go around saying no quality talents in Nigeria.

🫡

AWS Secrets Manager Stop putting passwords in your code. If your app stores credentials inside the code… It’s already a security risk. Here’s how AWS Secrets Manager fixes that 👇

ALL FREE CERTIFICATION RESOURCES AWS drive.google.com/drive/mobile/f… CISSP drive.google.com/drive/mobile/f… CISA drive.google.com/drive/mobile/f… CISM drive.google.com/drive/mobile/f… CRISC drive.google.com/drive/mobile/f… Digital Marketing drive.google.com/drive/mobile/f… Retweet to help others

Linux Security Fundamentals 1. Introduction → Linux security focuses on protecting the system, data, and services from unauthorized access, attacks, and misuse. → Linux is known for its strong security architecture, but proper configuration and management are essential. → Security involves controlling access, monitoring activities, and protecting system resources. 2. Core Security Principles → Confidentiality → Protect sensitive information from unauthorized access. → Integrity → Ensure data remains accurate and unchanged. → Availability → Ensure systems and services remain accessible when needed. 3. User and Permission Management → User Accounts → Each user has a unique User ID (UID). → Users belong to groups identified by Group IDs (GIDs). → Proper user management prevents unauthorized system access. → File Permissions → Linux uses three permission types: → Read (r) → Allows viewing file contents. → Write (w) → Allows modifying files. → Execute (x) → Allows running files as programs. → Permissions apply to: → Owner → Group → Others → Commands used: → chmod → change file permissions → chown → change file ownership → chgrp → change group ownership 4. Authentication Mechanisms → Linux authenticates users through several methods. → Password Authentication → Stored securely in /etc/shadow. → Passwords are hashed for security. → SSH Key Authentication → Uses public-private key pairs. → More secure than password authentication. → Multi-Factor Authentication (MFA) → Combines password with additional verification methods. 5. Access Control Systems → Discretionary Access Control (DAC) → Default Linux permission system. → File owners decide who can access their files. → Mandatory Access Control (MAC) → Enforces stricter security policies. → Examples: → SELinux → AppArmor 6. System Hardening → System hardening reduces attack surfaces. → Disable unnecessary services. → Update packages regularly. → Use strong password policies. → Restrict root login access. → Use SSH instead of insecure protocols. 7. Firewall Protection → Firewalls control network traffic entering or leaving the system. → Common Linux firewall tools: → iptables → nftables → UFW (Uncomplicated Firewall) → Firewalls protect against unauthorized network access. 8. Intrusion Detection → Detect suspicious activities in the system. → Tools include: → Fail2Ban → blocks repeated login attempts. → OSSEC → host-based intrusion detection. → AIDE → file integrity monitoring. 9. Software Updates and Patch Management → Regular updates fix vulnerabilities and bugs. → Commands used: → apt update && apt upgrade → yum update → dnf update → Keeping the system updated reduces security risks. 10. Logging and Monitoring → Monitor system logs to detect unusual activity. → Important log files: → /var/log/auth.log → authentication attempts → /var/log/syslog → system events → /var/log/kern.log → kernel messages → Tools like journalctl help analyze logs. 11. Security Best Practices → Use least privilege principle. → Enable firewall protection. → Monitor system logs regularly. → Use strong passwords and SSH keys. → Disable unused ports and services. → Backup important data. 12. Tip → Linux security relies on permissions, authentication, and monitoring. → Proper configuration significantly reduces vulnerabilities. → Combining system hardening, firewalls, and intrusion detection creates a strong defense. → Continuous monitoring and updates maintain system security. 📘 Linux Mastery Ebook → Master Linux internals, security, system monitoring, logging, process management, and architecture step-by-step. 🔗 Grab the Linux Mastery Ebook codewithdhanian.gumroad.com/l/dynwdc

I just completed the Security Principles room on @tryhackme I learnt about the security triad and common security models and principles.

I'm not going to compete with AI. I'm going to use it as an enabler for speed and precision. Epic fury. @yz9yt @stokfredrik

A Digital Hostage Crisis

What is Virtualization? —> Running Multiple Virtual Machines on a Single Physical System

FREE FOR ALL! AWS: shorturl.at/vkbWC CISSP: shorturl.at/OrkX6 CISA: shorturl.at/KDL8B CISM: shorturl.at/A80Q8 CRISC: shorturl.at/CsO4V DIGITAL MARKETING: drive.google.com/drive/folders/…

git clone = Make I copy this repo come my side. git pull = Abeg bring the latest gist. git push = I don update am, take am back. git commit = Oya, lock this change make e no loss. git status = Wetin really dey sup here? git checkout = Shift make I enter another lane.

How firewall works

AWS IAM Explained 👇

You only need 7 AWS services to get hired 🔥: • EC2 – run apps • S3 – store files • IAM – manage access • RDS – databases • Lambda – run code without servers • CloudWatch – monitor • VPC – network setup Forget the 200+. Master these 7 and get ahead of 90%

If You have an interest in learning Cybersecurity, You should start with these FREE Courses ~ Cybersecurity(Basics) Introduction to Cybersecurity netacad.com/courses/cybers… Cybersecurity Essentials netacad.com/courses/cybers… ~ Ethical Hacking Introduction to Ethical Hacking mygreatlearning.com/academy/learn-… Ethical Hacking Essentials codered.eccouncil.org/course/ethical… ~ Penetration Testing Penetration Testing - Discovering Vulnerabilities edx.org/course/penetra… ~Network Security Network Security-OpenLearn open.edu/openlearn/digi… Network Security olympus.mygreatlearning.com/login NSE [1,2,&3]: training.fortinet.com ~ Forensics Digital Forensics Essentials (DFE) codered.eccouncil.org/course/digital…

IP ADDRESSES + their ranges

A user reports they can ping an IP address (8.8.8.8) but cannot access websites by name (like google.com).  Which layer of the OSI model is most likely where the problem exists?  A. Layer 1 (Physical)  B. Layer 3 (Network)  C. Layer 4 (Transport)  D. Layer 7 (Application)

‼️ Meet the guy almost everyone hates for releasing a PoC for a MongoDB unauthenticated memory leak exploit dubbed Mongobleed the day after Christmas. This is allegedly the vulnerability used to breach Ubisoft, which led to the R6 chaos.

Caution with these Linux commands