Hello everyone! Please note that IT Pro Tuesday will be taking a break for the holidays and will be back on Tuesday, January 2nd, 2024.

In the last episode of the Security Swarm Podcast for this year: “Monthly Threat Report – December 2023,” we wrap up with a discussion on insights into M365 security trends, email-based threats, and commentary on current events in the cybersecurity space.

And one final note on 2023: Our Security Lab analyzed over 45 billion emails and found that 36.4% were categorized as unwanted! Find out more by downloading the full Cyber Security Report 2024 here. 

As always, we’re updating the full list on our website here. Enjoy.

A Blog

Explained from First Principles is designed to clearly introduce readers to the topics of number theory, email, and the internet with articles intended to foster a foundational understanding that can serve as a starting point for acquiring deeper expertise. digitaltransmutation particularly appreciates the section on email, which is “very nice and vendor agnostic. All the mailserver tickets gravitate to me now.”

A Free Tool

CryPing is a simple command-line network connectivity test tool that expands on the conventional ping command with the ability to ping specific ports; check the status of HTTP, SMTP, POP3, or NNTP services; timestamp output for prolonged monitoring; and set audible alerts for success or failure. GullibleDetective appreciates that it “lets you directly ping a port and get a response, so i.e., you could ping against port 21 and see if the service is responding.”

Training Resource

Novaspirit Tech is an interesting YouTube channel offering how-tos, perspectives, and technical information on a wide variety of subjects. The host is a self-described tech-obsessed problem solver who enjoys sharing his discoveries with the aim of helping others. mcshibbs lists it among the “top channels at the moment.”
External Attack Surface Management Attack Surface Summary

A Cheatsheet

CSS CheatSheet is a time-saving collection of all the essential details for HTML and CSS programming tasks in a single spot. This compilation of essential tools, markup generators, and practical code examples serves as a handy reference for streamlining css implementation. Extra_Discipline_644 finds it “a great way to quickly access the information you need while coding.”
External Attack Surface Management Attack Surface Summary

Another Free Tool

GoBGP is an open-source Border Gateway Protocol implementation that leverages the power of multicore processors and the simplicity of Golang’s concurrent programming. Facilitates seamless integration with other software through RPC APIs, while also providing a CLI for traditional configuration adjustments. asp174 explains, “GoBGP has a gRPC API. We use it with fastnetmon to automatically blackhole or re-route attacked hosts. It also has a cli tool to interact with the API.”
External Attack Surface Management Attack Surface Summary

P.S. Bonus Free Tools

Kiwi Syslog Server provides a straightforward solution for centralized management of syslog messages and SNMP traps. Users can efficiently view, archive, and analyze logs in real time, with features like log-to-disk functionality, date or priority-based log splitting, daily email summaries, and the ability to monitor 10 filtered windows for high-traffic alerts. Free version supports up to 5 devices. Thanks for this one go to hayjumper.

The BIRD Project is a robust, platform-agnostic dynamic IP routing daemon for Linux, FreeBSD, and other UNIX-like systems. With support for essential protocols such as BGP, OSPF, and RIP, it provides a versatile solution for efficient, reliable routing. Kindly suggested by corporaleggandcheese.