Day: 14 July 2021

What it PCI DSS (Payment Card Industry Data Security Standard)

The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures aimed at ensuring the security of credit, debit and cash card transactions and protecting cardholders from misuse of their personal information. PCI DSS was co-created in 2004 by the four major credit card companies. These are: Visa, …

What it PCI DSS (Payment Card Industry Data Security Standard) Read More »

Security Misconfiguration

Security Misconfiguration ranks sixth in the OWASP TOP 10 as it remains prevalent in projects and is susceptible to around 42% of companies according to statistics. Securing a Web application requires a secure configuration of all infrastructure components. Application components (such as frameworks) are the web server, database server, and the platform itself. The default …

Security Misconfiguration Read More »

Penetration Test Tools Part 2

Penetration testing goes beyond vulnerability scanning to use multi-step and multi-factor attack scenarios that first find vulnerabilities and then attempt to exploit them to dig deeper into the enterprise infrastructure. 11) Metaspoilt It is one of the most popular and advanced frameworks that can be used for Penetration Testing. It is an open source tool …

Penetration Test Tools Part 2 Read More »

WHAT IS A PCI DSS CERTIFICATE?

PCI DSS is a set of security standards created in 2004 by Visa, MasterCard, Discover Financial Services, JCB International, and American Express. The compliance plan managed by PCI SSC aims to secure credit and debit card transactions against data theft and fraud. While PCI SSC has no statutory authority to enforce compliance, it is a …

WHAT IS A PCI DSS CERTIFICATE? Read More »

What is EDR?

EDR (Endpoint Detection and Response) is a class of solutions for detecting and investigating malicious activity. Unlike antiviruses, whose task is to combat typical and major threats, EDR solutions focus on identifying targeted attacks and complex threats. EDR Architecture In general, the Endpoint Detection & Response class system consists of agents installed on endpoints and …

What is EDR? Read More »