SSRF (Server-Side Request Forgery) is a security loophole constructed by an attacker to form a request initiated by the server. In general, the target of an SSRF attack is an internal system that cannot be accessed from the external network . (Because it is initiated by the server, it can request the internal system connected to it but isolated from the […]
What is Server Side Request Forgery (SSRF) Read More »
A successful cyberattack is about more than just getting your foot into the door of an unsuspecting target. To be of any real benefit, the attacker needs to maintain persistence access within the target environment, communicate with infected or compromised devices inside the network, and potentially exfiltrate sensitive data. The key to accomplishing all these
C2: Command and Control Explained Read More »
Open XDR is a unified, AI-powered approach to detection and response, that collects and correlates all existing security tools, to protect the entire enterprise attack surface effectively and efficiently. Open XDR is more like ‘Everything Detection and Response’, more than eXtended Detection and Response, because it must defend against all threats across the entire attack surface. The
Open XDR. What is it? Read More »
So you want to be a Hacker? At some point you may have wanted to be a hacker or you know someone who wants/wanted be one. Being hacker comes with a fancy feeling, and we all love the thought of possessing the skills. However, the journey is not easy. The industry is large and you need to
How To Be A Hacker Read More »
Here are simple nmap commands that will make your penetration testing easier. Nmap is a free and open-source network scanner. Nmap is used to discover hosts and services on a computer network by sending packets and analyzing the responses. Nmap provides a number of features for probing Computer Networks, including Host Discovery and Services
Vulnerability Responsible Disclosure refers to the best practice followed by most security researchers of not disclosing a critical vulnerability in a software product until a vendor patch or fix has been made readily available. The reason that the security analysts and researchers aren’t able to share the information publicly is that hackers and cyber
What Is Vulnerability Responsible Disclosure? Read More »
What is Cross-Site Request Forgery (CSRF)? Cross-site Request Forgery, also known as CSRF is an attack whereby an attacker tricks an end user to execute unwanted actions on a web application in which they’re currently authenticated. The impact of the attack depends on the level of permissions that the victim has on the application. Such
What is Cross-site Request Forgery (CSRF)? Read More »
SQL injection, also known as SQLi, is a common database attack vector that uses malicious SQL code for backend database manipulation to access information that was not intended to be displayed. This information may include any number of items, including sensitive data, user details or private customer information. SQL (pronounced “ess-que-el”) stands for Structured Query
What is SQL injection? Read More »
established in Nairobi Kenya, Creative Ground Tech strives to promote Cyber Security Awareness and offer a world class Cyber Security and Data Science training courses. we believe in Africa and we are building Africa’s next generation of skilled Data Scientists and cybersecurity professionals through hands-on training courses.
Our training courses are designed to help businesses develop the workforce with the vital skills any organization requires.
The #1 cyber security and data science training provider in Africa.
Sign up to our newsletter