After completing a few AI agentic trainings, I decided it was time to level up my blog’s chatbot. But I didn’t want just a regular chatbot -I wanted something useful, intelligent, and integrated with my content. That’s how vMeNext was…

My philosophy is that you can’t truly protect something unless you understand how it works. Artificial Intelligence is a powerful and fascinating tool that can be applied in cybersecurity in many – and likely still undiscovered – ways. Of course,…

Some time ago, I needed to monitor Remote Desktop Gateway (RDG) authentication and authorization using Windows Event Logs and Splunk. I initially expected this task to be straightforward – similar to monitoring VPN activity on a firewall. Unfortunately, that wasn’t…

Risk-Based Vulnerability Management How to Manage Vulnerabilities Discovered on Company Assets? Let’s consider an example: CVE-2024-0012 – PAN-OS Authentication Bypass in the Management Web Interface. NIST Description: “An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker…

A while ago, I wanted to ensure that all endpoints in the company where I was responsible for security were fully updated. Since we had a consistent Windows 10 environment, the task was to verify that the latest Microsoft Cumulative…

Some time ago, I became concerned about unnoticed sources that had stopped sending logs to our SIEM system. This issue can have serious consequences, ranging from undetected attacks to compliance violations, so I began searching for a reliable solution. The…

Some time ago, I had the opportunity to configure File Integrity Monitoring (FIM) on the CrowdStrike platform. The setup was relatively straightforward, except for one aspect – email alerts. When configuring notifications for file changes, I found two native options…