本文介绍了在微软Azure订阅中添加超级协助管理账号的步骤。通过添加协管账号可以降低账号订阅被封的概率，提供超管账号被封或者忘记密码的补救方案，并管理某些服务如OpenAI模型。需要一个有效订阅的Azure和一个被邀请的微软账号。步骤包括访问订阅详情，添加角色分配，选择特权管理角色和所有者，选择成员，设置条件，最后确认邀请并使用被邀请账号登录Azure控制面板。

微软Azure订阅如何添加超级协助管理账号 - 如有乐享

这篇文章是关于渗透测试备忘单和红队笔记的。它包含了各种命令和技术，如检查Powershell日志记录、检查WinEvent日志中的SecureString泄露、审计政策、检查LSASS是否在PPL中运行等。此外，还包括了一些利用技术，如二进制利用、破解ZIP密码、设置简单的HTTP服务器等。文章还提供了一些有用的命令和工具，如MySQL用户定义功能提权、Docker权限提升、重置root密码等。最后，还提供了一些网络工具和技术，如端口转发、SSH隧道、文件传输协议等。

ired.team 红队笔记 渗透测试备忘单 - 🔰雨苁ℒ🔰

Cloudflare Access是一种企业级Zero Trust产品，提供免费的无限期、无流量限制、50台设备支持的零信任解决方案。本文简要记录了团队域的手动加入、客户端设备控制和身份验证策略等内容。

Cloudfalre Access应用问题一二 » 老E的博客

This post provides information on Azure application registrations, enterprise applications, and managed identities. It explains the purpose of application registrations and the trust relationship established between Microsoft's identity platform and custom applications. It also discusses enterprise applications as the application identity within Azure AD and the relationship between app registrations and enterprise applications. Additionally, the post covers managed identities and their role in assigning identities to Azure resources. The author aims to clarify these concepts in the context of authentication in Azure.

Azure Application registrations, Enterprise Apps, and managed identities - adatum

This document provides information about SOC2, including objectives related to privacy, controls per TugboatLogic, types of SOC2 reports, SSAE 18, management insights, additional frameworks, and references. SOC2 focuses on controls and policies related to access control, security operations, risk management, business continuity, organization and management, asset management, information and communications, audit and compliance, data security, SDLC security, and continuous compliance. It is important for service organizations to comply with SOC2 requirements to ensure the security and privacy of data.

SOC2 – Index

这篇文章介绍了Nessus+2024插件的安装步骤。提供了下载脚本和安装方法，并附有插件数量和卸载方法。文章还包含了Nessus的启动和停止命令以及注意事项。请注意，本文仅供参考，请遵守软件许可协议和法律法规。

Nessus 特别版+2024插件 10.6.4 For Linux【适用于Debian & Ubuntu系统】

AC-Hunter™ Community Edition is a free version of AC-Hunter that provides threat hunting functionality with some limitations. It offers the same powerful threat hunting analytics and network insights as the paid Enterprise Edition. Users can choose between an install script or a VMWare virtual image based on their specific use case. AC-Hunter Enterprise and AC-Hunter Community Edition are compared in a chart, and users are also directed to other threat hunting tools.

AC-Hunter™ Community Edition - Active Countermeasures

本文介绍了11款免费、可用于内网穿透的轻量、简洁的隧道工具和平台，包括Loophole、localhost.run、localtunnel、expose、bore、tabserve、staqlab、jprq、zrok、telebit和ssh-j.com。这些工具提供了将本地服务器暴露到公共网络的功能，支持不同的隧道协议和自定义域名。

11款轻量、简洁、可用于内网穿透的免费隧道工具与平台 » 老E的博客

This article explains how to use Azure Automation and PowerShell to create a daily Microsoft Entra risk report. By automating the process, administrators can monitor risk events, gather data, format it into an HTML report, and send it via email. The report includes information on risk detections, risky users, and risky service principals, providing visibility into identity-based attacks and allowing for timely action. The article provides step-by-step instructions on setting up the Azure Automation account, assigning necessary permissions, installing required Microsoft Graph PowerShell SDK modules, adding the code, reviewing the report, and scheduling the script to run daily.

Use Azure Automation and PowerShell to Create a Daily Microsoft Entra Risk Report | Practical365

To use PNETLab, download the .ova file and deploy it on virtualization platforms like VirtualBox or VMWare. Make sure to enable virtualization in your BIOS. After deployment, register and login to access the PNETLab box through your browser. You can choose between online and offline mode, with offline mode not requiring registration. In the PNETLab box, you can go to the store to download free labs and practice them. The labs come with lab files, workbooks, and instructions on how to use the console.

PNETLab : Lab is Simple

This article provides various methods to run a program without admin privileges and bypass the UAC prompt in Windows OS. It covers topics such as configuring permissions for non-admin users, allowing standard users to run programs that require admin privileges, bypassing UAC with the RunAsInvoker option in CMD, enabling the RunAsInvoker mode in the EXE file manifest, and creating a shortcut to run a program with a saved administrator password. Each method is explained in detail with step-by-step instructions.

How to Run Program without Admin Privileges and Bypass UAC Prompt | Windows OS Hub

Astra Pro是一款功能齐全、易于使用、具有灵活性的WordPress主题，适用于各种类型的网站。它具有快速加载速度、设计灵活性、广泛的集成、响应式设计和SEO友好等优点。本文提供了关于Astra Pro主题的详细设置图文教程，包括安装、导入预制网站、自定义Header和Footer、配置布局和颜色选项、设置导航菜单、自定义产品页面、自定义首页、关于页面和联系页面、自定义博客页面、制作Mega Menu和将Elementor模板添加到超级菜单等内容。

Astra Pro主题超详细手把手设置图文教程 - 虾皮路

本文介绍了目标web网站信息收集的两种方法（主动收集和被动收集），以及域名信息收集、网站指纹识别、整站分析、主机扫描、端口扫描、敏感目录和文件扫描、旁站和C段扫描、网站漏洞扫描等内容。提供了一些工具和在线查询网站供参考。

目标web网站信息收集内容及一些工具

Defender Control v2.1 is a portable freeware that allows users to disable Microsoft Defender in Windows 10 completely. It provides different blocking methods and can be useful for users experiencing conflicts between Defender and their antivirus application or those who want to disable Defender permanently. The program's interface displays the status of Microsoft Defender and allows users to enable or disable it with one click. It supports multiple languages and operating systems.

Defender Control v2.1

本文介绍了容器镜像扫描的两种工具：docker scan和Trivy。docker scan是docker官方推出的插件，需要登录dockerhub用户才能使用，免费扫描限制为10次/月。Trivy是一个全面且多功能的安全扫描仪，支持多种扫描场景和平台。文章还提到了镜像扫描的几种应用场景，并介绍了ImagePolicyWebhook容器镜像扫描的实现方式。

容器安全之镜像扫描 - 自由早晚乱余生 - 博客园

本文介绍了在服务器入侵过程中发现隐藏字符的原理。通过使用命令如cat -A，可以查看隐藏字符，其中包括转换为\\r的^M字符，它表示回车并可能导致内容覆盖。文章提供了示例和注意事项，并给出了参考文章和作者信息。

服务器入侵之找出隐藏字符的原理 - 自由早晚乱余生 - 博客园

This post discusses the 5 best open-source SIEM tools for organizations looking to mitigate cybersecurity risks and detect threats. The featured SIEM solutions include AlienVault OSSIM, MozDef, Wazuh, Prelude OSS, and Sagan, each with its own unique features and advantages. The post emphasizes the importance of finding a SIEM that suits specific needs and offers effective threat detection capabilities.

5 Best Open Source SIEM Tools | Mezmo

该文章描述了作者在一次被入侵和删除木马程序的经历。作者首先发现服务器流量异常增高，经过一系列的分析和操作，最终成功清理了木马程序并加强了服务器的安全性。

一次被入侵和删除木马程序的经历-阿里云开发者社区

这篇博客分享了一次服务器被入侵的处理过程和一些启示。处理措施包括删除恶意文件、解锁文件和目录、还原被篡改的命令、清空异常文件内容等。启示包括加强安全组设置、增加密码复杂性、监控关键文件、限制登录IP、关闭外网、检查异常进程和定时任务等。

一次服务器被入侵的处理过程分享 - 自由早晚乱余生 - 博客园

Learn how to create and host a dev tunnel using Microsoft's devtunnel CLI tool. This article provides step-by-step instructions for installing the CLI on different operating systems, logging in, hosting a dev tunnel, and connecting to it. With dev tunnels, you can securely test and debug web apps and webhooks from anywhere.

Create and host a tunnel - Microsoft dev tunnels | Microsoft Learn

This article provides a guide on using Azure to automate alerts for Azure (Entra ID) application secret expirations. It covers creating a new Azure application, assigning permissions, creating an app secret, connecting to the Microsoft Graph API, retrieving application information, handling pagination, getting application secret expiration, converting time to local time zone, dealing with multiple secrets per application, sending alerts via email and Microsoft Teams, and setting up automatic serverless automation using PowerShell runbooks and schedules.

Automated Alerts on Azure (Entra ID) Application Secret Expirations - The Lazy Administrator

本文介绍了微软免费开发隧道（内网穿透）的使用教程和命令说明。通过该工具，可以在Linux、Windows和macOS上实现内网穿透，并提供了详细的命令示例和高级用法说明。文章还介绍了使用限制和管理开发隧道的方法。

微软免费开发隧道(内网穿透)，支持Linux/Windows/macOS - 如有乐享

This blog post discusses how to build a DMZ (Demilitarized Zone) in Azure Cloud. It explains the concept of a DMZ, the architecture with two or three layers of security, and workload placement. It also provides examples of address spacing and hybrid network workloads placement. The post concludes with best practices for Azure networking, including segmenting networks, controlling traffic with NSGs, and enforcing user-defined rules.

Build DMZ in Azure Cloud | Blog by Raihan Al-Beruni

This document provides best practices for network security in Microsoft Azure. It emphasizes the importance of adopting Zero Trust architectures, implementing conditional access policies, enabling port access only after workflow approval, and granting temporary permissions for privileged tasks. The document also recommends controlling routing behavior, using virtual network appliances, deploying perimeter networks for security zones, avoiding exposure to the internet with dedicated WAN links, optimizing uptime and performance with load balancing, disabling RDP/SSH access to virtual machines, and securing critical Azure service resources with Azure Private Link. Additional information on control routing behavior, virtual network appliances, perimeter networks, WAN links, load balancing, RDP/SSH access, and Azure Private Link is provided. The document concludes with a reference to Azure security best practices and patterns.

Best practices for network security - Microsoft Azure | Microsoft Learn

This document provides instructions for using Greenbone Community Containers 22.4. It includes steps for starting the vulnerability management, setting up and starting the containers, updating the containers, performing a feed synchronization, accessing the web interface remotely, gaining terminal access to a container, using gvm-tools for CLI access, setting up a mail transport agent, performing a manual feed sync, troubleshooting common issues, and more.

Greenbone Community Containers 22.4 - Greenbone Community Documentation

This post explains how to set up a L2TP/SSTP client access RRaS server in Azure. Although RRaS is not officially supported in Azure, it can still be configured by enabling IP forwarding on the VM and adding a routing table to the vnet. The post provides step-by-step instructions on installing the Remote Access role, configuring and enabling RRaS, and setting up NAT for the VPN tunnel. It also mentions the need to assign IP addresses from a static pool and configure SSL certificate and authentication. The post concludes by inviting readers to share their experiences and alternative methods in the comments.

How To Setup A L2TP/SSTP Client Access RRaS Server In Azure ~ Bauer-Power Media

This article provides a step-by-step guide on how to configure an Azure site-to-site VPN with RRAS in Azure Resource Manager. It covers configuring the RRAS server's NICs, installing the RRAS roles and features, setting up and configuring the VPN in Azure, and configuring the RRAS server. The article also includes troubleshooting tips.

Let's Configure Azure Site-to-Site VPN with RRAS in Azure Resource Manager! | Microsoft Learn

Building an effective purple team doesn't require a generous budget. From a one-person operation using open-source tools to a dedicated team with specialized tools, organizations of all sizes can create a collaborative security approach. The article outlines four budget-savvy strategies for building a purple team, including the bootstrap approach with open-source tools, the cost-effective duo with one paid tool, the dedicated team with multiple tools, and the comprehensive force with an extensive toolkit. Each strategy offers different levels of capabilities and resources to enhance security posture and resilience.

4 budget-savvy strategies for building an effective purple team | CSO Online

This document provides information about the Sync-CyberArk-Password-Azure-KeyVault-Secret plugin, which allows for pushing, updating, and syncing passwords from CyberArk Vault to Azure Key Vault. It includes prerequisites, configuration steps, and instructions for adding Azure Key Vault usage. The document also explains how to add KeyVaultName and SecretName File Categories in Vault Server and create a new service account platform. Additionally, it covers the process of adding Azure Key Vault usage and testing the push/update operation.

TheMediocreCoder/Sync-CyberArk-Password-Azure-KeyVault-Secret: Push / Update CyberArk Passwords to Azure Key Vault

This document discusses incident response frameworks and steps, specifically focusing on the frameworks developed by NIST and SANS. It compares the two frameworks and highlights the importance of preparation in incident response. The document also emphasizes the need for defining the CSIRT, developing and updating a plan, acquiring and maintaining the proper infrastructure and tools, improving skills and supporting training, and possessing up-to-date threat intelligence capabilities. It further explains the steps of detection and analysis, containment, eradication, and recovery, as well as post-incident activities. The document concludes by mentioning CrowdStrike's incident response services and providing information about the author.

Incident Response Plan: Frameworks and Steps - CrowdStrike

Invoke-AtomicRedTeam is a PowerShell module that allows you to execute tests defined in the atomics folder of Red Canary's Atomic Red Team project. It is important to understand the tests before executing them and ensure you have permission to test. It is recommended to set up a test machine similar to your environment and have your collection/EDR solution in place. Complete installation and usage instructions can be found in the Wiki.

redcanaryco/invoke-atomicredteam: Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder] of Red Canary's Atomic Red Team project.

CISA's Cybersecurity Performance Goals (CPGs) are a set of voluntary practices aimed at reducing risks to critical infrastructure and the American people. These goals serve as a benchmark for measuring and improving cybersecurity maturity, provide recommended practices for IT and OT owners, and align with NIST's Cybersecurity Framework functions.

Cross-Sector Cybersecurity Performance Goals | CISA

This article outlines a six-step framework for accelerating cybersecurity incident response. The steps include preparation, identification, containment, eradication, recovery, and lessons learned. The importance of training, establishing a response strategy, and leveraging technology such as endpoint detection and response (EDR) platforms are highlighted. The article also emphasizes the need for continuous improvement and the role of investigation in the incident response process.

6 Steps to Accelerate Cybersecurity Incident Response

本文介绍了如何使用fly.io部署next-terminal和宝塔远程mysql。文章提供了注册和使用fly.io的步骤，以及自定义域名和一些fly.io的技巧。

[新服务]fly.io使用部署next-terminal+ 宝塔远程mysql – 1024.ee

XRDP: Linux RDP server with Active Directory integration – 4sysops

使用Docker构建PyCharm开发环境_pycharm create a new docker target-CSDN博客

自建 Gotosocial | 一个 ActivityPub 联邦社交网络程序 - 独立世界

Azure Well-Architected Framework - Microsoft Azure Well-Architected Framework | Microsoft Learn

A zero trust approach to security architecture - ITSM.10.008 - Canadian Centre for Cyber Security

Create security baselines - Training | Microsoft Lea

How to automate opening and login to websites with Python | by Hristina Gulabovska | Medium

Moving to a Zero Trust Security Model - SentinelOne

【好玩儿的 Docker 项目】80、90 回忆杀，10 分钟搭建复古中文 DOS 游戏，最多畅玩 1898 款！ | 我不是咕咕鸽

【好玩儿的 Docker 项目】10 分钟搭建一个高颜值的在线工具箱，用户体验很棒！ | 我不是咕咕鸽

【好玩儿的 Docker 项目】10 分钟搭建一个简单图床 ——Easyimage | 我不是咕咕鸽

DCToolbox – An Easy Approach to Deploy Conditional Access Policies

Raven: Open-source CI/CD pipeline security scanner - Help Net Security

HA for FortiGate-VM on Azure | FortiGate Public Cloud 7.4.0 | Fortinet Document Library

GitLab CI CD Pipelines for Home Lab: A Step-by-Step Guide - Virtualization Howto

网络剪贴板 - 极简的数据暂存和传送工具

在Docker下一键安装部署免费开源的问答社区！

Graylog Docker Compose Setup: An Open Source Syslog Server for Home Labs - Virtualization Howto

transfer.sh - Easy and fast file sharing from the command-line.

无惧 DDOS，无需开放额外端口，无需服务器，随时随地访问局域网 Web 应用 ——Cloudflare Tunnel | 我不是咕咕鸽

FastStone Capture Full Serial Key · GitHub

PDF24提供了许多针对特定问题的精心裁剪的PDF工具。其中包括常用的PDF合并、PDF分割、PDF压缩、PDF编辑、PDF签署、PDF转换器等。此外，还有更多工具可用于PDF阅读、创建账单、移除和编辑PDF元数据等。还可以将多种文件格式转换为PDF，如图片、Word、PowerPoint、Excel等，或者将PDF转换为图像、Word、PowerPoint等。

所有的PDF工具 - 100％免费 - PDF24 Tools

How to Install OpenVPN on Ubuntu - Tony Teaches Tech

11 search engines for cybersecurity research you can use right now - Help Net Security

教你稳定1折使用Azure的服务器，让Azure不在那么贵不可及 - 随风的博客

使用Oracle Cloud（甲骨文云）的沙盒，体验其的云服务 | MisakaNo の 小破站

借助CF Argo Tunnel隧道，在PaaS容器云平台部署哪吒探针 | MisakaNo の 小破站

Microsoft Learn 临时免费云电脑使用教程及评测 | MisakaNo の 小破站

申请IBM LinuxONE的免费VPS | MisakaNo の 小破站

Managing Azure AD Accounts and Application Keys - Example Configuration

Removable Storage Automatic BitLocker Recovery Key Escrow to Azure AD | BitLocker-to-go Guide for Intune - SMBtotheCloud

The top 10 technologies defining the future of cybersecurity | VentureBeat

Goorm.io免费IDE实现Always Online挂机及其原理_goorm 不关机_=XHG78999=的博客-CSDN博客

k0baya/xiaoya_alist_docker_on_render: 在Render中部署小雅Alist的Docker镜像

Top 10 Free Copyscape Alternatives Picked by Experts (2023)

Run Exchange Online commands using Azure Automation – 4sysops

This post on Render's website explains how to deploy a Docker image to their cloud hosting service. The post covers how to deploy public and private images, how to manage credentials, and how to deploy images manually or via webhook. There are also some limitations to be aware of, such as the image needing to be built for the linux/amd64 platform and the compressed image size being less than 10Gi.

Deploy an image | Render · Cloud Hosting for Developers

This post discusses using Azure Functions for Exchange Online operations, which can be triggered by different events such as queue, timer, event grid, and HTTP. It explains why Azure Functions can be a better option than Exchange Online PowerShell for certain scenarios, and provides a walkthrough of creating a function to retrieve mailbox permissions. The post also covers limitations of Azure Functions and provides information on upcoming conferences where the topic will be discussed in more detail.

Using Azure Functions for Exchange Online  | Practical365

Microsoft has released a new set of Windows 11-based virtual machines for free download, called the Windows 11 Development Environment, which includes Windows 11 Enterprise and developer tools such as Visual Studio 2022 Community Edition and Windows Subsystem for Linux 2. The virtual machines are available in four formats and are valid for 90 days. The Windows 11 Development Environment is x86-only and does not support activation with a product key.

Microsoft releases new free Windows 11 virtual machines - Neowin

This post from Marius Hosting recommends Synology NAS models for running Docker, based on firsthand experience. The author highlights the importance of CPU AVX support and CPU turbo, and recommends models such as the DS723+, DS923+, and DS1522+ for their good quality-price ratio. The post also includes notes on recommended RAM and SSD cache upgrades, and advises against purchasing 20x series NAS models for Docker due to the absence of AVX support.

Synology: Best NAS For Docker – Marius Hosting

这篇博客介绍了如何在 Docker 中搭建复古中文 DOS 游戏，作者将 40 多个经典的 DOS 游戏封装到了 Docker 镜像里面，总共可玩 1898 款游戏。博客详细介绍了安装 Docker 和 Nginx Proxy Manager，创建安装目录，下载游戏，以及如何使用反向代理等操作。同时，博客也提供了更新和卸载游戏的方法，以及常见问题的解决方案。

【好玩儿的 Docker 项目】80、90 回忆杀，10 分钟搭建复古中文 DOS 游戏，最多畅玩 1898 款！

<- 点击标题OPEN按钮：查看此Notion数据库的使用方法

Template Readme

仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容。

Test Article 3

仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容，仅供列表展示、文章无内容

Test Article 4

Test Article 5

仅供列表展示、文章无内容;
这里写文章的前言：
一个简单的开头,简述这篇文章讨论的问题、目标、人物、背景是什么？并简述你给出的答案。

Test Article 7

Test Article 9

仅供列表展示、文章无内容、文章描述摘要过长时会被截断，仅显示前面几行内容，根据主题决定。这是一个示范

Test Article 10 : Title should not too long, else will affect the display, as shown in this one.

Learning

Thinkings

Technologies

Collections

Notes

Home

Sites

Blog

SubMenu是子菜单，挂在上一个Menu中

Navigation

菜单slug留空即可，用户展开子菜单

Search

Text

Guestbook

更多帮助请访问手册 → https://tangly1024.com/article/notion-next-secondary-menu

Others

Comments

Github

Cloud

Cyber

Thoughts

password

icon

date

type

slug

status

title

summary

Database Form

类型为Notice的文章将被显示为公告，仅 hexo和next支持；仅限一个公告

NetSec

YouTube Channel

Join NetSec Channel for More