Security Hall of Fame
Hello, and thank you to all the researchers that help expose issues in our website. Please use our PGP key for secure reporting here. We would especially like to thank: Shivam Pravin Khambe
Security Hall of Fame Read More »
IPv6-Only Killer App: CLAT
If you’ve been following us for a while, you’ve probably read about us talking about IPv6, the latest IPv6-only mandates in the U.S. government, and technical guidance getting to an IPv6-only state. Continuing along with blog we wrote on Tayga (the open source NAT64 solution), the singular technical holdup in implementing IPv6-only in the enterprise
IPv6-Only Killer App: CLAT Read More »
DoD PKI Token SSH CLI Login
Ivanti Policy Secure (IPS) has an implementation for doing DoD PKI Token SSH logins using x509 certificates. This method is not the traditional static RSA keys. The information below will show you how to configure each step of the way, as well as some troubleshooting steps. The Requirements For the last 20 years, DoD has
DoD PKI Token SSH CLI Login Read More »
Why You Should Stay Away from Extending IPv4 Solutions
As we approach the 10 year anniversary of World IPv6 Launch, a parallel effort attempting to extend IPv4 addressing is taking place – introducing a series of complex technical, political, and logistical issues. With all the success occurring with the ongoing migration to IPv6 (49% IPv6 adoption in North America according to Google), we recommend you
Why You Should Stay Away from Extending IPv4 Solutions Read More »
Log4j and DoDIN APL Implications
I know there’s been a lot of internet traffic on Log4j – not to mention all the drama on broken fixes, but we wanted to offer a different perspective: what are the Log4j vulnerability implications for DoD Information Network Approved Products List (DoDIN APL) testing and certification? What is the Log4j Issue? I wish this
Log4j and DoDIN APL Implications Read More »
DoD Mandating IPv6-only
It has been decades in the making, but the near future is crystal clear now: the DoD is mandating IPv6-only. This is different than previous pushes to move the Department to some level of IPv6 enablement – including IPv6/IPv4 dual-stack, etc. This new push comes with very specific actions. This directive also arrives at the
DoD Mandating IPv6-only Read More »
IPv6 in the DoD finally?
Lots of IPv6-related things hit the news cycle in the last few weeks.Here are some of those news items: 2020 IPv6 OMB Mandate: stating all federal agencies must transition at least 20% of their networks to IPv6-only by end of FY 2023 the NIST IPv6 Profile updated to their Revision 1 of the US Government
IPv6 in the DoD finally? Read More »
Network Simulation with EVE-NG Webinar
Our very own Jeremy Duncan lead a webinar today on Network Simulation with EVE-NG. Thanks again to Tyrone Wilson from Cover6 Solutions and all the folks part of the DC Cybersecurity Professionals Meetup group for hosting us. If you have any questions feel free to get in contact with us today here! For anyone who
Network Simulation with EVE-NG Webinar Read More »
IPv6-only Your Network: Cheap and Easy
The new trend for IPv6 migrations lately is going fully to IPv6, or IPv6-only. This means that your transition plan is IPv4 one day, and then you change and roll-out a single IP stack: to IPv6. You may be thinking, “but how is that possible considering most of the Internet is IPv4-only still?” The answer
IPv6-only Your Network: Cheap and Easy Read More »