Azure network watcher

Frequently asked questions (FAQ) about Azure Network Watcher | Microsoft Learn Monitoring Diagnostics Logging VM linuxwesteurope01, vnet004798, default2 (10.1.0.0/24) Network watcher Network diagnostics tools Cmd to get google Ipv4 Connection troubleshoot Network Watcher | Connection troubleshoot Connection Troubleshoot provides the capability to check a direct TCP or ICMP connection from a virtual machine (VM), application […]

Asymmetric encryption

A Primer on Cryptography | Auth0 In asymmetric encryption, there are two keys, one for encrypting and one for decrypting. Asymmetric encryption introduced much more flexibility in secure communications as the encryption key is not kept secret. For example, if a sender, Alice, wants to send a message to Bob, Alice retrieves Bob’s public encryption […]

Mutual TLS (mTLS) and RFC 6125

What is mTLS? | Mutual TLS | Cloudflare TLS works using a technique called public key cryptography, which relies on a pair of keys — a public key and a private key. Anything encrypted with the public key can be decrypted only with the private key. Therefore, a server that decrypts a message that was […]

401 access denied win server (iis), Local Security Policy

Do you have issues with security on a fresh windows server when trying to access http(s)://serverroot = IIS Admin access with admin accounts works, since they will default be in group: Check Local Security policy->User Rights Assignment->Allow log on locally Check Local Security policy->User Rights Assignment->Deny log on locally Domain account no admin access does […]

Packet Sniffers

Packet Sniffers: What Are They? Alongside Some Great Packet Sniffing Tools 10 Best Packet Sniffers – Comparison and Tips – DNSstuff Home | TCPDUMP & LIBPCAP WireShark Packet Sniffer SmartSniff Microsoft Message AnalyzerVery effective in troubleshooting network issues and verifying protocol implementation.The Microsoft Message Analyzer tool has been retired Network MinerIt is used by many […]

MSA Account

Group Managed Service Accounts Overview Group Managed Service Accounts Overview | Microsoft Learn Domain user accountIf the service interacts with network services or accesses domain resources like file shares on other computers, consider using a minimally-privileged domain account. A domain administrator must create the account before the AFService can be configured to use the account. […]

RFC-6125 TLS, MTLS

Representation and Verification of Domain-Based Application ServiceIdentity within Internet Public Key Infrastructure Using X.509 (PKIX)Certificates in the Context of Transport Layer Security (TLS) Likewise, during TLSnegotiation, the server presents its notion of the service’s identityin the form of a public-key certificate that was issued by acertification authority (CA) in the context of the Internet PublicKey […]

System Administrator

Develop fast. Stay secure Snyk | Developer security | Develop fast. Stay secure. Open Web Application Security Project OWASP Top Ten Web Application Security Risks | OWASP SETSPN -a host/alias_name targetserverSETSPN -a host/alias_name.contoso.com targetserver Can’t access SMB file server – Windows Server | Microsoft Docs Tcp viewer or netstat -ano | find “1234” | find […]