Tenable ブログ
サイバーセキュリティニュース: 世界的なサーバーセキュリティ機関が犯罪者が利用する防弾ホスティングをターゲットにする、CSA がエージェント型 AI リスクフレームワークを発表
A Powerful Tenable.asm Feature: HTML Search
Find out why Tenable.asm’s HTML search capability is so practical and powerful, as it offers nearly infinite flexibility to build whatever search you need to and report on it expeditiously.
ゼロデイは CVE を待たない
Learn why an attack surface map can provide invaluable and unique help in detecting zero day vulnerabilities.
Using AWS Condition Context Keys to Reduce Risk: A Least Privilege Cheat Sheet
As strong advocates of least privilege, we believe these AWS keys can be quite effective — if they can be easily understood. Here’s a handy guide.
The Right Way to do Attack Surface Mapping
The key to mapping out your attack surface accurately is to scan all of your organization's assets, develop an asset inventory list and find shadow IT.
Least Privilege Policy: Automated Analysis Trumps Native AWS Tools
Here’s what you need to know about AWS methods for granting and controlling access, plus native tools for detecting and repairing excessive permissions.
Passive DNS Is the Wrong Way To Do Attack Surface Mapping
When identifying a corporate attack surface, passive DNS can be useful but it won’t be comprehensive by itself, so it should be part of a more holistic program.
Do Not Take an IP-centric Approach to Attack Surface Mapping
Relying on IP data to identify assets means you're likely missing critical information needed to map your attack surface.
Active Directory のプライマリグループ ID 攻撃: 関連する脅威をどう防御するか
The Primary Group ID in Active Directory, created to help manage access to sensitive resources, has become a critical vulnerability that attackers can exploit to escalate privileges without leaving a trace.The Primary Group ID in Active Directory was originally developed to support the UNIX POSIX…
Active Directory の Kerberos 認証前攻撃を阻止する方法
Here’s a look at how to safeguard your Active Directory from the known roasting attack on Kerberos Pre-Authentication.As part of the Kerberos authentication process in Active Directory, there is an initial request to authenticate without a password. This is an artifact left over from Kerberos…
営業チームに問い合わせる