Notes on security practices, tools, and configurations I use.
Tools I like
- Burp Suite - Web application security testing
- nmap/zenmap - Network scanning and enumeration
- Wireshark - Network traffic analysis
Best Practices
- Enable 2FA/MFA
- Principle of least privilege
- Regular backups (3-2-1 rule)
Resources
- OWASP Top 10 - Web application security risks
- CIS Benchmarks - Security configuration guidelines
- Have I Been Pwned - Check for credential breaches