Inspection mode feature comparison on Fortigates

May 24, 2024

I came across this nifty doc describing the capabilities of flow-based vs proxy-based inspection modes for Fortigates. Very cool stuff.

Silvrback blog image

Obvious (but notable) takeaway: certain features only work with proxy-based inspection mode.

  • Video Filter
  • Inline CASB
  • ICAP
  • Web Application Firewall
  • Data . . .

Read More

OWASP Cheat Sheet Series

May 22, 2024

I stumbled across this amidst some prior training and thought I'd pass it along. OWASP has a fantastic collection of AppSec cheat sheets here.

A zip archive of all the cheat sheets is available for download here.

Read More

Cybersecurity Training Library

May 04, 2024

Here's my list of bookmarks for cybersecurity training resources. I'll keep adding to it over time.

Cloud Service Providers

Community / Collaboration / Forums

Read More

Fortinet FCP Study Resources

May 04, 2024

A new month, a new certification endeavor! This time, I'm starting to focus on the Fortinet Certified Professional track. What follows is a breakdown of the various study resources I'm using. Time permitting, I'll update it with additional resources I come across along the way.

Miscellaneous

Read More

Security Certification Roadmap

December 14, 2023

Wow! Check out this awesome cybersecurity security infographic by Paul Jerimy. Original source here.

Silvrback blog image

Read More

Microsoft Storm-0558 Attack Analysis

September 30, 2023

I meant to post this earlier but got distracted by a few other things. Yay for busy life, right?

Earlier this month Microsoft concluded their investigation of the recent Storm-0558 email compromise/attack and the results are... fascinating. I highly recommend checking out the blog post when you get a chance. It's available here. . . .

Read More

[SC-100] Conditional access "what if" tool

More security controls in the market need a feature like this.

August 16, 2023

I'm digging the "What If" tool in Azure Conditional Access component. The idea is simple: as you're building policies, you can throw various scenarios at the policy engine to understand what the heck it'll do.

This gives admins the opportunity to observe effects and perhaps test variations of authentication use . . .

Read More

Archive
   Subscribe by email and never miss a post.

This update link alerts you to new Silvrback admin blog posts. A green bubble beside the link indicates a new post. Click the link to the admin blog and the bubble disappears.

Got It!