This post is to summarize the steps how to create VPN tunnels using Fortigate.  Related Post:  Download and Launch Fortigate Virtual Machine in VMWare WorkStation Fortigate Diagram Ports for IPSec: UDP 500 and UDP 4500  Notes:  https://docs.fortinet.com/document/fortigate/7.4.0/best-practices/368512/ipsec-vpn https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/33578/configurable-ike-ports – if port 500 and 4500 blocked by ISP, you can enable NAT for other port, such […]

GitHub offers hosted virtual machines to run workflows, which contains an environment of tools, packages, and settings available for GitHub Actions to use. It also allows you install additional software on GitHub-hosted runners (Github hosted Action VM) as a part of your workflow. That gives us a chance to install enable RDP on a Windows […]

Kasm Workspaces is a container streaming platform for delivering Linux browser, desktop, and application workloads to the web browser. Basically it streams desktops, browsers and applications directly to your browser. Deliver digital workspaces using KASM’s open-source web-native rendering technology to establish a modern devops-enabled delivery of KASM’s open-source docker image library. The good thing is […]

On a development machine, you can develop an AutoIt script that will launch and authenticate to your application for your connection component.   Diagram Example: FileZilla – sFTP -> Linux Server 10.0.0.20 (root/CyberArk1) Steps Note: https://docs.cyberark.com/pam-self-hosted/Latest/en/Content/PASIMP/psm_Develop_universal_connector.htm 1 Install AutoIT and Client Application Download and install AutoIt3 on the development machine to develop PSM universal connector components. By default, AutoIt3 is installed in the […]

In this post, I am going to show you an easy way to execute Penertration testing in your network for free in 30 days. Just using one command auto-generated from https://www.horizon3.ai/ ‘s Nodezero platform, you will be able to execute a professional pen testing to reveal some proven attack paths in your network, and find […]

This post summzrize some notes and steps to upgrade the Privilege Cloud Connector and the components for versions 12.7 and later. Note: Upgrading the CPM and PSM components requires downtime (typically a few minutes). We recommend performing the upgrade at a time that will have the least impact on your operations. Diagram https://docs.cyberark.com/PrivCloud/Latest/en/Content/Privilege%20Cloud/PrivCloud-upgrade-connector-12.7-later.htm?tocpath=Setup%7CUpgrade%20Privilege%20Cloud%20connectors%7CUpgrade%20the%20Privilege%20Cloud%20Connector%7C_____1   Check .Net, […]

CyberArk Vendor Privileged Access Manager (Vendor PAM) is an integrated SaaS solution that enables fast and secure privileged access for vendors, consultants, maintenance personnel and other authorized external 3rd parties. With Vendor PAM, organizations can implement Zero Trust-based just-in-time access, biometric MFA, and privileged credential and session management without the need for VPN clients, passwords, […]

Google Gemini is the name of a new AI model developed by Google DeepMind. It is built from the ground up for multimodality, meaning it can reason seamlessly across text, images, video, audio, and code. Gemini is the first model to outperform human experts on Massive Multitask Language Understanding (MMLU), one of the most popular […]

CyberArk plugins and Connection Components use web drivers to connect to web-based targets. For the connection to succeed, the driver and browser versions must be the same.This applies to both Chrome and Edge drivers. Browser Download info Google Chrome (32-bit), version 100 or later Click here to download this version Microsoft Edge (32-bit), version 103 or later […]

This post shows how you can get a free dns domain from cloudns.net and a google site as your website. And it also presents the steps how to integrate them together which make your Google Site to use custom domain you got from cloudns.net.    Sign Up An Account FREE DNS FEATURES – https://www.cloudns.net/ Free Forever […]

This post is to show you how to create a your own free public available website for Azure Naming Tool Github project using Koyeb’s free service.  It is simple, easy, fast and completely free. No credit card required.    Azure Naming Tool  The Azure Naming Tool was created to help administrators define and manage their […]

The purpose of the CyberArk Dashboard entry is to provide Remote Desktop Manager users with an interface that eliminates the need to use Password Vault Web Access (PVWA) to see the list of safes and credentials that the currently logged on user has access to. Combined with password-less scenarios and/or our rich role-based access control (RBAC), this […]

The agent sends up an upload of the baseline snapshot to the cloud agent platform for assessment. For the initial upload the agent collects comprehensive metadata about the target host (a few megabytes) and sends a baseline snapshot to the cloud for assessment. The status Scan Complete is reported upon success. This first scan typically […]

This post is to summarize the steps how to configure a remote connection manager tool to integrate with CyberArk PSM. In this way, you can directly RDP into target server through PSM, without logging into PVWA. Basically, this post gives you a way to launch transparent connections to target systems using a standard RDP client application. […]

There are lots of Chinese DOS games in 1980s – 1990s. The Github page (https://github.com/rwv/chinese-dos-games)  collected them and created a docker image to simplify the steps to bring them up into a website. You even can create your own website with just a couple of simple commands.  In this post, I am going to go […]

The CPM is installed on a Windows system as an automatic system service called CyberArk Password Manager.  It can be stopped and started through the standard Windows service management tools. Stop the CyberArk Password Manager Service From the Start menu, select Settings, then Control Panel. From the list of Control Panel options, select Administrative Tools, then Services; the Services window appears. […]

KnowBe4 PhishER uses rules with Yet Another Recursive/Ridiculous Acronym (YARA) logic to disposition and tag the messages that are forwarded to your PhishER Inbox. YARA is a tool used to identify and classify malware samples. You can write custom rules using YARA logic. For general information about creating rules in PhishER, see our How to Create and Manage PhishER Rules article.  All PhishER […]

In my home lab virtual environment, VMware ESXi and Workstation used to host most of my testing virtual machines. To get those VMs working together in a multi networks diagram, I always need to have a router or firewall VM. I were using all kinds of virtual routers or firwealls, such as those major vendors, […]

Azure Service guides are intended to help you in decision-making for individual Azure components within a workload. Each guide highlights the core features and capabilities essential for achieving a state of excellence. They are not configuration guides or exhaustive lists of all features and capabilities, but rather emphasize the usefulness of features from the perspective […]