Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

JUMPSEC Jargon Buster - What is the difference between a Vulnerability Assessment & a Penetration Test, Thom explains. Vulnerability assessments typically rely on vulnerability scanning tools to identify technical vulnerabilities making use of pre-configured test cases and signatures. A penetration test takes a contextual view of the target, combining many vulnerabilities and information sources in order to craft specific attacks with the goal of finding security weaknesses. Simply put a penetration test mimiks a skilled attacker, whereas a vulnerability assessment provides a baseline against common known weaknesses.

JUMPSEC Jargon Buster - Nikoo explains how Red Teaming differs from a Penetration Test. There are a number of ways that a red teaming exercise differentiate from a pen test. Firstly, the scope of standard penetration test is usually clearly defined with the goal to identify as many vulnerabilities as possible and attempt to exploit them on the stated targets during the engagement.

Do Not Allow COM Port Redirection will determine whether the redirection of data to client COM ports from the remote computer will be allowed in the RDS session. By default, RDS allows COM port redirection. It can be used, for example, to use a USB dongle in an RDS session.

JUMPSEC Jargon Buster - Courtney Cole explains what is the difference between external & internal Managed Vulnerability Scanning?

JUMPSEC Jargon Buster - Courtney Cole explains what a vulnerability scan is and why managed vulnerability scanning is different

The security governance team at Genetesis is continually challenged to find creative ways to improve the overall security posture without disrupting the culture of learning and discovery. Ignyte Assurance Platform helps them to automate the workflow across the multiple frameworks, provide dashboards for senior leadership to see the current security posture at a glance, and also help them to gain the FDA clearance. Every member of our team is dedicated to providing the best in class customer support to maximize your experience working with us.

NTLM is Microsoft’s old mythological authentication protocol. Although new and better authentication protocol has already been developed, NTLM is still very much in use. NTLM protocol has proven to have many flaws that result in potential vulnerabilities. One caution measure that can be taken is auditing and logging any NTLM traffic events.

Specifies whether to prevent the sharing of clipboard contents (clipboard redirection) between a remote computer and a client computer during a Remote Desktop Services session. By default, Remote Desktop Services allows clipboard redirection. If the status is set to Enabled, users cannot redirect clipboard data.