RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall | allinfosecnews.com

Dec. 8, 2023, 8 a.m. | Steffen Rogge

NVISO Labs blog.nviso.eu

Welcome, readers, to the first installment of our blog series “Preventing Exploitation and Abuse with the RPC Firewall”.In this post, we’ll delve into how to create rules for the RPC firewall and how to deploy them onto our servers.In the year 2024, we’ll release the second part of this series, where we’ll explore detection possibilities … Continue reading →

abuse blog blue team deploy exploitation firewall log logging our blog red team red teaming release rpc rules series servers siem threat hunting

More from blog.nviso.eu / NVISO Labs

Top things that you might not be doing (yet) in Entra Conditional Access – Advanced … 1 month, 1 week ago | blog.nviso.eu

access advanced azure azure ad +16

Unpacking Flutter hives 1 month, 2 weeks ago | blog.nviso.eu

access app applications application security +22

Become Big Brother with Microsoft Purview 1 month, 3 weeks ago | blog.nviso.eu

big big brother can companies +31

Covert TLS n-day backdoors: SparkCockpit & SparkTar 1 month, 3 weeks ago | blog.nviso.eu

amp applications backdoor backdoors +17

Top things that you might not be doing (yet) in Entra Conditional Access 2 months ago | blog.nviso.eu

access azure azure ad b2b +20

Is the Google search bar enough to hack Belgian companies? 3 months ago | blog.nviso.eu

applications application security awareness belgium +27

Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating 3 months, 1 week ago | blog.nviso.eu

android app application security arm64 +16

Scaling your threat hunting operations with CrowdStrike and PSFalcon 4 months, 2 weeks ago | blog.nviso.eu

agent aid automation blue +22

RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall 4 months, 2 weeks ago | blog.nviso.eu

abuse blog blue team deploy +14

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Network Security Engineer

@ Meta | Menlo Park, CA | Remote, US

View on infosec-jobs.com

Security Engineer, Investigations - i3

@ Meta | Washington, DC

View on infosec-jobs.com

Threat Investigator- Security Analyst

@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC

View on infosec-jobs.com

Security Operations Engineer II

@ Microsoft | Redmond, Washington, United States

View on infosec-jobs.com

Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com