Articles tagged with: #certificate Clear filter
DV, OV and EV TLS Certificates

DV, OV and EV TLS Certificates

cybersecurity www.reddit.com

We have a few public-facing applications being proxied through our WAF ( Cloudflare), and hence Cloudflare provides and manages the TLS certificate for encrypting traffic between the Cloudflare servers and end-user browsers. We make use of a paid CA service that issues us publicly trusted TLS certificates that we use to encrypt traffic between the origin server and Cloudflare network. Instead of having to pay for these certificates, we were thinking of replacing them with Lets Encrypt...

HTB Authority Machine Walkthrough | Easy HackTheBox Guide for Beginners

HTB Authority Machine Walkthrough | Easy HackTheBox Guide for Beginners

cybersecurity www.reddit.com

I wrote detailed walkthrough for HackTheBox machine Authority which showcases, cracking password-protected files, and password reuse vulnerabilities, and for Privilege escalation, one of the most common and easiest vulnerability in Active directory Certificate ESC1, and also extracting public and private key from administrator certificate and using it for other services. Perfect for beginners...

Is Blue Team Level 1 Certification worth it?

Is Blue Team Level 1 Certification worth it?

cybersecurity www.reddit.com

Hi All, I've been studying Cybersecurity for a while now. While I don't have any formal education in Cybersecurity I've done quite a few certifications so far: Google Cybersecurity Certificate, ISC2 Certified in Cybersecurity, CompTIA Network+, Security+, CySA+, and AZ-900. I'm also following the certification path of WGU's masters program for Cybersecurity and Information Assurance to eventually enroll in the program. I also regularly do labs on tryhackme focusing on Blue team labs. With all...

When developers ask 'What's a certificate?' it's like asking a physicist 'What's gravity?'

When developers ask 'What's a certificate?' it's like asking a physicist 'What's gravity?'

cybersecurity www.reddit.com

I've been working as a security architect at an MNC for the past couple years, and recently had one of those conversations that perfectly captures the gap between security "common sense" and reality . Decided to write about it because I suspect many of you have been in similar situations. This is part confession, part comedy, part call-to-action for better security education. Hope it resonates with fellow security professionals who've ever had to explain why HTTPS needs certificates to someone...

Exploring Free CTI Fundamentals Courses - My Findings & Feedback Welcome!

Exploring Free CTI Fundamentals Courses - My Findings & Feedback Welcome!

cybersecurity www.reddit.com

Hey all, I've been looking for free Cyber Threat Intelligence (CTI) fundamentals courses and found two that look solid: SOCRadar - CTI Fundamentals for SOC Analysts - covers intelligence lifecycle, OSINT tools, TTPs, and SOC use cases. arcX - CTI 101 - beginner-friendly, threat actors, intel lifecycle, and a certificate option. Has anyone here taken either? Also, are there other free CTI resources you'd recommend? Appreciate any insights or suggestions - thanks in advance! submitted by...

[iOS 18.6.2] Live Zero-Day: Apple trustd failure silently disabled cert validation system-wide

[iOS 18.6.2] Live Zero-Day: Apple trustd failure silently disabled cert validation system-wide

cybersecurity www.reddit.com

On August 20, 2025 , live logs from a non-jailbroken iPhone 14 running iOS 18.6.2 exposed a critical, system-wide trust failure . Due to a malformed trust anchor reload in trustd , the device temporarily stopped enforcing TLS certificate validation - effectively treating all certificates as valid, including untrusted and potentially malicious ones. Observed impact: App Transport Security (ATS) was silently disabled Minimum RSA, ECDSA, and signature algorithm constraints were set to zero...

HTB EscapeTwo Machine Walkthrough | Easy HackTheBox Guide for Beginners

HTB EscapeTwo Machine Walkthrough | Easy HackTheBox Guide for Beginners

cybersecurity www.reddit.com

I wrote detailed walkthrough for HTB Machine EscapeTwo which showcases escaping MSSQL and executing commands on the system for privilege escalation abusing WriteOwner ACE and exploiting ESC4 certificate vulnerability. https://medium.com/@SeverSerenity/htb-escapetwo-machine-walkthrough-easy-hackthebox-guide-for-beginners-20c9ca65701c submitted by /u/Civil_Hold2201 [link] [comments]

Malwarebytes Awarded MRG Effitas Android 360° Certification

Malwarebytes Awarded MRG Effitas Android 360° Certification

Cyber Security - AI-Tech Park ai-techpark.com

Malwarebytes Mobile Security achieved the highest results and was awarded the MRG Effitas Android 360° Certificate, reaching a near-perfect detection rate in independent lab testing. This distinction underscores Malwarebytes' ability to prevent mobile threats - including malware, spyware, trojans and text-based scams - before they can cause harm. As mobile...

HTB Certified Machine Walkthrough | Easy HackTheBox Guide for Beginners

HTB Certified Machine Walkthrough | Easy HackTheBox Guide for Beginners

cybersecurity www.reddit.com

I wrote Detailed walkthrough for HTB Machine Certified which showcases abusing WriteOwner ACE and performing shadow credentials attack twice and for privilege escalation Finding and exploiting vulnerable certificate template, I wrote it beginner friendly meaning I explained every concept, https://medium.com/@SeverSerenity/htb-certified-machine-walkthrough-easy-hackthebox-guide-for-beginners-bdcd078225e9 submitted by /u/Civil_Hold2201 [link] [comments]

Trying to obtain EJPT without training?

Trying to obtain EJPT without training?

cybersecurity www.reddit.com

Hello How to take the exam for the ejpt without training bcz I saw the objectives and I do CTF and HTB before so why I pay for the training if I just want the certificate only? submitted by /u/Internal_Lunch_7104 [link] [comments]