Skill UI

This guide details how to implement multi-layered API threat protection using Google Apigee. It covers critical security policies including JSON/XML content validation, OAuth 2.0 enforcement, SpikeArrest rate limiting, and advanced regex patterns to defend against OWASP Top 10 threats. Ideal for establishing robust API security controls and meeting compliance requirements.

This guide details the process of implementing BGP route origin validation using Resource Public Key Infrastructure (RPKI). Learn how to create Route Origin Authorizations (ROAs), deploy RPKI validators, and configure Route Origin Validation (ROV) on major routers like Cisco IOS-XE and Juniper Junos. This technique is crucial for preventing malicious route hijacking and securing internet routing paths.

Breach and Attack Simulation (BAS) provides an automated, continuous method for validating the effectiveness of security controls (EDR, SIEM, NGFW, etc.). By safely emulating real-world attack techniques mapped to the MITRE ATT&CK framework, BAS helps organizations proactively identify security gaps and measure control maturity across the entire kill chain. It moves beyond point-in-time testing to provide an ongoing security posture assessment.

This guide details the configuration and implementation of mutual TLS (mTLS) authentication between microservices. It utilizes Python's cryptography library for robust certificate generation, validation, and secure service-to-service authentication, essential for adopting zero-trust security models.

This skill covers the comprehensive management of RSA key pairs, including generation, secure storage, rotation, and validation. It adheres to NIST guidelines, covering key serialization formats (PEM, DER, PKCS#8), passphrase protection, and ensuring robust key strength for digital signatures and encryption.

This comprehensive guide provides essential security protocols for building robust Laravel applications. It covers best practices for authentication (Sanctum, Passport), authorization (Policies), input validation, and protecting against common vulnerabilities like CSRF, XSS, and SQL injection. Key topics include secure file uploads, rate limiting, environment variable management, and implementing robust middleware.

This skill is designed for implementing and managing user verification workflows within a Laravel PHP framework. It facilitates processes such as email confirmation, password reset validation, and ensuring data integrity for secure application access. It is essential for robust web backend development.

A comprehensive guide for authorized penetration testers on identifying and exploiting Cross-Site Request Forgery (CSRF) vulnerabilities. This skill covers analyzing state-changing requests, testing anti-CSRF token implementations, and verifying defenses like SameSite cookies and Origin/Referer header validation using tools like Burp Suite.

A comprehensive guide detailing the process of performing entitlement reviews and access certification campaigns using SailPoint IdentityIQ. This skill is critical for maintaining compliance (SOX, HIPAA) by automating manager reviews, targeted privileged access validation, and identifying Separation of Duties (SOD) violations. It ensures robust access governance and facilitates automated remediation workflows.

A comprehensive guide simulating real-world attacks against internet-facing infrastructure (firewalls, web servers, DNS, etc.). It covers the entire penetration testing lifecycle, including passive and active reconnaissance, vulnerability scanning (using tools like Nmap, Nessus, and Nuclei), manual validation, and simulated exploitation, adhering to standards like PTES and OSSTMM.

This guide details the technique and workflow for executing HTTP Parameter Pollution (HPP) attacks. HPP exploits how web applications and back-end systems handle duplicate HTTP parameters (e.g., first-wins, last-wins, concatenation). It is a critical method for bypassing Web Application Firewalls (WAFs), testing input validation logic, and identifying vulnerabilities in API, OAuth, and payment processing flows.

This skill provides a systematic framework for managing Indicators of Compromise (IOCs) throughout their entire life cycle—from initial discovery and validation to enrichment, deployment, monitoring, and eventual retirement. It emphasizes implementing confidence decay functions, tracking hit rates, and managing false positives to maintain a high-quality, actionable threat intelligence database, thereby minimizing analyst fatigue and maximizing detection efficacy.