SDSukrit Duainsukritdua.com·Mar 12, 2025 · 4 min readHackTheBox: ExploreEnumeration We start off with our favorite tool….nmap to identify open ports and services. ┌──(kali㉿kali)-[~/HTB/Explore] └─$ sudo nmap -sS 10.129.56.63 [sudo] password for kali: Starting Nmap 7.92 ( <https://nmap.org> ) at 2022-09-14 16:43 EDT Nma...00
SDSukrit Duainsukritdua.com·Feb 19, 2025 · 2 min readThreat Modeling - Part 5What will we learn? Microsoft Threat Modeling Tool Basics System Threat Modeling Threat Generation It’s a wrap! Threat Modeling - Microsoft TMMT Download Link - https://aka.ms/threatmodelingtool Once you have it installed and ready to go let’s ...00
SDSukrit Duainsukritdua.com·Feb 18, 2025 · 2 min readThreat Modeling - Part 4What will we learn? System Threat Modeling approaches Unconventional Threat Modeling Techniques Contrasting Threat Modeling approaches Success Criteria Strategies for effective Threat Modeling System Threat modeling with STRIDE System Threat ...00
SDSukrit Duainsukritdua.com·Feb 4, 2025 · 3 min readThreat Modeling - Part 3What will we learn? Well….STRIDE! STRIDE Microsoft developed this methodology in the early 2000s. This methodology shows that nearly all the threats you can think of will fall under one or more of these Spoofing: Pretending to be someone else, lik...00
SDSukrit Duainsukritdua.com·Feb 3, 2025 · 3 min readThreat Modeling - Part 2What we will learn… Trust Boundaries Trust Zones Scoping What to ask yourself as you begin threat modeling Questions to ask yourself when you start (4Qs by Adam Shostack) What are you working on? Scope What can go wrong? Heart of the threat m...00