Jump to content
Hak5 Forums

Ogedei

Active Members
  • Content count

    13
  • Joined

  • Last visited

About Ogedei

  • Rank
    Hackling
  1. Firewall replacement

    we work by blocking the social network category itself. So that needs https inspection and cert installation. The same for web email etc. Google's quic needs to blocked for any of their sites. Also wouldn't we want to see through all https traffic to scan it and stuff.
  2. from my ceh studies if you are talking of hacking the same machine over the internet you need to install something to give you a session to your public ip and on a port which is open for the victim machine. And with that you have a cmd session over the internet.
  3. Firewall replacement

    Nice list. I was referring to blocking social media, youtube etc. You cant block them without https inspection. And most FWs already have a category defined for malware/ads so all these links would be blocked anyway, right? Also how's your experience been with blocking social media etc with pfsense. I might need to do it some time.
  4. Firewall replacement

    You just have to install the FW cert to all computers if you using SSL inspection. I have done it with fortigates, does increase the load and stuff i guess, never done any thorough calculations on that though. And if not using https inspection how would you go about blocking https sites?
  5. Firewall replacement

    HAHA the questions i asked about pfsense vs commercial FWs riles them up a lot too. Here https://doc.pfsense.org/index.php/Comparison_to_Commercial_Alternatives
  6. So now there these SOCs which seem to be really the top thing in cybersec these days. My idea of them is just guys sipping coffee and checking whatsapp and sending arcsight automated excel generated reports to people who also have no idea on what to do with them. Ec-council has also come with the incident handling cert now which i think is geared towards this. I want to know what the whole deal is with these SOCs, anybody working in one, please share. Right now all i know is the fuckers are expensive.
  7. Firewall replacement

    You mean they can rival checkpoints etc? If yes then the savings companies can make would be insane, no? But then the problem with companies is they don't seem to find employees who understand cybersec, what they end up hiring is guys who just sit and email the TAC lol. Also I can recall pfsense can't do deep ssl inspection or can it?
  8. Firewall replacement

    HI So you people are using pfsense firewalls in actual work/office production networks? I am all for open source but then how much of a good idea is this really? I ask because whenever open source AV topic comes up, most of us dont seem to be enthusiastic about it. Also how good is pfsense, let's say if one is considering it for environments where security is a top need.
×