Tuesday, July 30, 2024

SWG (Secure Web Gateway) - NG-SWG

URL Filter & Content Filter

For the Security+ exam both URL filter and content filter have been renamed. The new name is SWG (Secure Web Gateway).

SWG (Secure Web Gateway):

URL filter
Content filter
DLP (Data Loss Prevention)
CASB (Cloud Access Security Broker)

NG-SWG (Next-Generation Secure Web Gateway) adds:

Intrusion detection/prevention
Proxy-based firewall

Monday, July 29, 2024

Certificate Validation: Notes for the Security+ exam

Checking the Validity of Certificates

On this exam there are only 2 ways to check the validity of a certificate:

CRL (Certificate Signing Request)
OCSP (Online Certificate Status Protocol)

CRL

You can use OCSP incase/instead
You have to download from the CA (Certificate Authority), recommended twice a day

OCSP

Real-time
Good, revoked, or unknown
Public CA
Internet CA
You can use a CRL incase/instead

Too much traffic to intermediate CA, then use stapling.

Answer for CRL in the question:

OCSP

Answers for OCSP in the question:

CRL
Stapling

Reasons for revoking a certificate:

Employee leaves the organization

A system is decommissioned

A certificate is superseded

Private key is compromised

Certificate was issued fraudulently

Certificate that have expired do not need to be revoked.

Digital Signature: Exam notes CompTIA Security+

Digital Signature

Listed below are the items you need to know for the exam:

Digital signatures provide:

Non-repudiation
Authentication
Integrity

Creating the digital signature is a 2 step process:

First, hash the email/message
Second, the private key digitally signs (encrypts) the hash

The digital signature is created with the "sender's" keys.

The digital signature is an encrypted wrapper for the sender's public key.

The recipient's system extracts the public key and decrypts the digital signature to validate the sender.

RSA and DSA (Digital Signature Algorithm) are use to create digital signatures.

Sunday, July 28, 2024

CompTIA Security+ SY0-601 Retirement date

CompTIA Security+ SY0-601

This certification retires this week as of July 31st, 2024.

Thursday, July 18, 2024

Windows God Mode

God Mode

Here is a great management tool built-in to Windows. Just right click on your desktop to create a new Folder. Name it (with brackets):

God Mode.{ED7BA470-8E54-465E-825C-99712043E01C}.

All of you Windows management tools will now be located in one app.

CompTIA CySA+ (Cs0-003) Questions

CompTIA CySA+ (CS0-003)

We are going to try and add at least five questions on a daily basis. If this tends to be popular we will add questions for Security+, the SY0-701 version.

Create Personality Quiz With ProProfs

Acronym flashcards for CompTIA Security+ (SY0-701

Security+ (SY0-701) Acronym Flashcards

CompTIA Security+ SY0 701 Acronym Flashcards » Flash cards

Wednesday, July 17, 2024

CompTIA SY- 701 (Security+) Acronyms

CompTIA SY0-701 Acronyms

This is a video option for the flashcards for the acronyms for Security+ (SY0-701)

Security+ Mobile Devices 3rd Party Apps

Jailbreaking, Rooting, and Sideloading

Sideloading: Installing an app from a different source than the official app store.

This can be achieved on an Android by enabling the setting.

To do this on an iPhone requires that the device is jailbroken.

Jailbreaking / Rooting

These methods are used to get elevated privileges to system files on mobile devices. This can be prevented by using MDM (Mobile Device Management).

Jailbreaking: iOS (iPad, iPhone)

Rooting: Android

CompTIA Exam Prep - ITF+, A+, Network+, Security+, CySA+

CompTIA Security+ Exam Notes