Available now! Telegram Research 2025 — the year's key insights 
Network Security Channel
Open in Telegram
⭕️Start Channel From 2017⭕️ ✅ Security Operation Center (SOC) ✅ Bug Bounty ✅ Vulnerability ✅ Pentest ✅ Hardening ✅ Linux ✅ Reasearch ✅ Security Network ✅ Security Researcher ✅ DevSecOps ✅ Blue Team ✅ Red Team
Show more2 875
Subscribers
+1724 hours
+897 days
+12530 days
Posts Archive
مشهد هلپ دسک
نیازمند نیروی helpdesk برای کار در کارخانه، حقوق حداقل قانون کار......
شبکه شامل سرورها، سیسکو، میکروتیک (روتر و رادیو)، دوربین های شبکه، voip و حدود ۳۰ کلاینت
تخصص و سابقه شبکه اهمیتی نداره، کار عملی helpdesk مهم است .......
ساعت کاری ۷ تا ۳ (با احتمال اضافه کاری) محدوده طرق و ده غیبی (سرویس خودرویی
از محل سکونت)
مناسب افرادی که تخصصی ندارند و حداقل شش ماه کاراموزی رفته اند و آماده به کار هستند
سلام
کارخانه ای در مشهد نیازمند کاراموز شبکه است
در این شرکت مجازی سازی - سرور - میکروتیک سوئیچ سیسکو و روتر های مختلف هست که میتونید یاد بگیرید
کاراموزی فقط برای دانشجویان است و با برگه ی کاراموزی دانشگاه میتونید اقدام کنید برای این منظور به ایدی زیر اطلاع بدید
@Developer_Network
🔘Share & Support Us 🔸
💎Channel : @Engineer_Computer
🛡 بعد از سالها کار با Burp Suite به یک نتیجه رسیدهام: مشکلِ بیشترِ تسترها «نداشتنِ ابزار» نیست، «نخواندنِ عمیق» است.
ابزار را همه نصب میکنند؛ اما فاصلهی بین کسی که فقط یک Scan میگیرد و کسی که واقعاً یک آسیبپذیریِ بحرانی پیدا میکند، در همان جزئیاتی است که معمولاً از کنارشان رد میشویم:
🔹 اسکنرِ خودکار میوههای دمِدست را میچیند (XSS بازتابی، هدرِ امنیتیِ غایب) — اما باگهای پرارزش جای دیگریاند.
🔹 نقصهای Business Logic، آسیبپذیریِ IDOR، دور زدنِ زنجیرهایِ احراز هویت و باگهای کور (Blind) فقط با تستِ دستی و کنجکاویِ انسانی پیدا میشوند.
🔹 یک Repeater و صبرِ کافی برای آزمودنِ یک درخواست به صد روشِ مختلف، از هزار اسکنِ خودکار ارزشمندتر است.
برای همین تصمیم گرفتم چیزی را که در منابعِ فارسی کم داریم بسازم: یک راهنمای جامع و کاملاً فارسیِ Burp Suite.
📘 ۵۳ صفحه — ۳۱ فصل — ۵ بخش:
معماری و تمام ماژولها (از Proxy تا Collaborator و Extender)
متدولوژیِ باگبانتی، از Recon تا Report
۱۶ کلاس آسیبپذیریِ مدرن: SQLi، XSS، SSRF، XXE، SSTI، JWT، OAuth، Request Smuggling، GraphQL و…
یک Cheat Sheet جامع و فهرستی از منابعِ تمرینِ قانونی
جمعبندیِ من ساده است: اتوماسیون «پوشش» میدهد، اما کنجکاوی «اثر» پیدا میکند. اگر تازه وارد امنیتِ تهاجمی شدهاید، اول گردشکارِ دستی را مسلط شوید و بعد به ابزارِ خودکار تکیه کنید.|
📌 و یک یادآوریِ همیشگی: تمام این تکنیکها فقط برای تستِ مجاز و قانونیاند.
اگر این راهنما به کارتان میآید یا این مسیر برایتان جذاب است، خوشحال میشوم در دیدگاهها بشنوم. 👇
#امنیت_سایبری #BurpSuite #BugBounty #WebSecurity #PenetrationTesting #CyberSecurity #باگ_بانتی #AppSec #InfoSec #امنیت_اطلاعات
🔍 After years in security operations, I'll say the quiet part out loud: your scanner is not your edge.
Burp Suite is the industry standard for web application security testing — yet most people use maybe 20% of it. Run an active scan, collect the low-hanging fruit (missing headers, a reflected XSS, the occasional SQLi), submit, repeat.
But the data from real-world bug bounty programs tells a different story about where impact actually lives:
The highest-value findings — RCE, account takeover, authentication bypass — are rarely the first thing a scanner flags.
Business logic flaws (price manipulation, coupon race conditions, workflow bypasses) are invisible to automation. No payload list detects intent.
IDOR is still one of the most common critical findings, and it comes down to a human noticing a predictable object ID and asking "what happens if I change this?"
Blind vulnerabilities — out-of-band SSRF, blind SQLi — only surface when you've set up the right listener and know exactly what you're waiting for.
The tool doesn't find the bug. The tester does.
Burp's real power was never the Scanner. It's Repeater, Intruder, Collaborator — and an analyst patient enough to probe a single request a hundred different ways.
Automation scales coverage. Curiosity finds impact.
If you're getting into offensive security: master the manual workflow before you lean on the automated one. The scanner makes you competent. Manual testing makes you effective. (Authorized targets only — always.)
#CyberSecurity #BugBounty #WebSecurity #PenetrationTesting #BurpSuite #InfoSec #AppSec #EthicalHacking
با پایتون خداحافظی کنید
https://github.com/karanpratapsingh/system-design
معماری یاد بگیرید
🇮🇷Share & Support Us 🔸
💪 Channel : @Engineer_Computer
📖 Just revisited a book every defender should have on their shelf: "Understanding Network Hacks: Attack and Defense with Python" by Bastian Ballmann (Springer).
It opens with a simple idea that sums up the whole philosophy: knowledge itself was never the threat — what you do with it is.
This isn't just another "hacking" book. It's a hands-on, packet-level tour of how network attacks actually work — and, just as importantly, how to detect and defend against them. Every offensive technique comes paired with the defensive mindset to match.
Using Python and Scapy, it walks through the full stack:
🔹 Layer 2 — ARP spoofing & VLAN hopping 🔹 Sniffing & IP spoofing (and how to detect a sniffer on your network) 🔹 DNS reconnaissance & spoofing 🔹 Application layer — SQL injection, command injection, SSL sniffing 🔹 WiFi — packet injection, MITM, and wireless intrusion detection 🔹 Bluetooth & email spoofing
What I value most as a Blue Team practitioner: you can't defend what you don't understand. Rebuilding an attack in ~30 lines of Python forces you to truly understand the protocol underneath — and that understanding is exactly what makes you a sharper defender.
If you work in SOC, network security, or detection engineering and want to move past just clicking tools toward actually understanding the traffic, this one earns its place.
Have you read it? What's the one security book that changed how you see the network? 👇
#CyberSecurity #BlueTeam #NetworkSecurity #SOC #Python #Scapy #InfoSec #PacketAnalysis #ThreatDetection #EthicalHacking
🔘Phishing is still the #1 initial access vector — year after year.
But strong phishing response isn't about heroics. It's about a repeatable, auditable process anyone on the team can execute under pressure.
Here's what a solid SOC phishing playbook actually looks like 👇
⏱️ Triage on the clock: 🔹 Intake (0–5 min) — log the report, pull the raw .eml, capture screenshots. Never forward it — that rewrites the headers. 🔹 Preserve (0–10 min) — extract attachments, compute SHA256, store read-only. Chain of custody from minute one. 🔹 Authenticate (0–15 min) — read Authentication-Results: SPF / DKIM / DMARC (and ARC for forwarded mail). Check the Received chain + WHOIS domain age. 🔹 Classify & escalate — Critical / High / Medium / Low, each with its own SLA.
🔐 The nuance most people miss: SPF=fail isn't always phishing (forwarding breaks it), and DKIM=pass doesn't mean "trusted" if the signing domain isn't your brand. Authentication is a signal, not a verdict — combine it with domain age, URL analysis & user behavior.
🧯 Containment by scenario: ✅ Clicked only → block domain, quarantine similar mail, monitor 72h. ✅ Credentials submitted → reset password, revoke tokens, force MFA re-enroll. ✅ Malware executed → isolate host, image memory + disk, hunt for lateral movement.
📊 The metrics that matter: time-to-triage (<15 min) and time-to-contain for criticals (<2 hrs).
A playbook turns panic into procedure. Does your team have one documented?
#SOC #IncidentResponse #Phishing #BlueTeam #DFIR #DMARC #ThreatHunting #CyberSecurity
✅ Share & Support Us 🔹
🔥 Channel : @Engineer_Computer
🔘 Active Directory is the #1 target in most enterprise breaches.
Why? Because once an attacker lands a single foothold, AD becomes the highway to Domain Admin.
You can't defend what you don't understand — so here's the attacker's path through AD, and how Blue Teams shut it down 👇
🔸 Enumeration — attackers map users, groups & computers (LDAP/SID lookups) before doing anything loud.
🔸 Kerberos abuse — AS-REP Roasting (accounts with pre-auth disabled) and Kerberoasting (service accounts) let them crack weak passwords offline.
🔸 Delegation abuse — misconfigured RBCD can let a low-priv account impersonate the Domain Controller.
🔸 Credential dumping — DCSync mimics a DC to pull hashes; LAPS & gMSA misconfigs leak local/service passwords.
🔸 Persistence — Shadow Credentials inject a key into msDS-KeyCredentialLink to quietly re-authenticate as a target.
🛡 Defensive takeaways: ✅ Enforce Kerberos pre-auth; use long service-account passwords (or gMSA). ✅ Prefer constrained delegation over RBCD, and audit who can write it. ✅ Monitor anomalous ticket requests (mass SPN queries, DCSync from non-DC hosts). ✅ Deploy LAPS correctly and restrict read access. ✅ Enable SMB signing to kill relay attacks.
The same TTPs that red teams use are what adversaries use — understanding them is what turns raw logs into real detections.
What's the first AD detection you'd build?
#ActiveDirectory #BlueTeam #SOC #ThreatDetection #Kerberos #DFIR #CyberSecurity #InfoSec
✅ Share & Support Us 🔹
🔥 Channel : @Engineer_Computer
💎 Planning your cybersecurity certification roadmap for 2026?
The skills gap is real — and Fortinet's NSE program has now crossed 1.8M+ certifications issued worldwide.
Here's how the certification ladder is structured 👇
🔹 Fundamentals (NSE 1–2) — threat landscape + core concepts. A solid entry point whether your role is technical or not.
🔹 Associate / FCA (NSE 3) — hands-on FortiGate operation.
🔹 Professional / FCP (NSE 4–5) — deploy, manage & monitor across four tracks: Secure Networking, SASE, Cloud Security, and Security Operations. (NSE 4 is now the FortiOS Administrator exam.)
🔹 Solution Specialist / FCSS (NSE 6–7) — design & troubleshoot advanced solutions. The SecOps track (FortiSIEM + FortiSOAR) is gold for anyone building a SOC career.
🔹 Expert / FCX (NSE 8) — a written exam plus a 9-hour practical lab. The summit.
My takeaway: certifications don't replace experience, but a structured path keeps your learning intentional instead of scattered. If you're SOC-focused, the Security Operations tracks (FCP → FCSS) are the most direct route.
Which level are you targeting this year?
#CyberSecurity #Fortinet #NSE #BlueTeam #SOC #InfoSec #CareerDevelopment
✅ Share & Support Us 🔹
🔥 Channel : @Engineer_Computer
The AI security job market isn't coming. It's already here — and most career guides haven't caught up.
I went through the SANS 2026 AI Cybersecurity Careers report this week, and a few numbers stopped me cold:
→ 74% of cyber teams are restructuring because of AI
→ The skills gap now outweighs the headcount gap by 20 points (it was just 4 points a year ago)
→ AI/ML Security Engineers are earning $152K–$210K, with roughly 2,400 active listings right now
The report maps 10 roles across three tiers — the clearest signal I've seen of where this field is heading:
🟢 HIRING NOW — AI/ML Security Engineer, AI Red Team Specialist, AI GRC Lead, AI Threat Intel Analyst. 100+ live listings each. Search these titles today.
🟠 BUILDING — AI SOC Orchestrator, AI IR Orchestrator, AI Security Specialist, AI Supply Chain Engineer. Your current role is quietly turning into one of these.
🟣 HORIZON — AI Deepfake Defense Specialist, Post-Quantum Migration Specialist. Hiring ramps up in 2027–2028, so the time to build the skills is now.
The line that stuck with me: the window to establish yourself in AI security is 12–18 months.
For those of us already in SOC and blue-team work, this isn't a threat — it's the biggest opportunity in a decade. AI handles the pattern-matching; we bring the judgment, context, and defensive strategy that machines still can't.
Which of these roles are you positioning for?
#CyberSecurity #AISecurity #SOC #BlueTeam #InfoSec #CyberCareers
Repost from N/a
📢 فرصت همکاری | Full Stack Developer (Python)
ما به دنبال جذب یک Full Stack Developer با تمرکز اصلی بر Python هستیم.
شرایط و مهارتهای مورد نیاز:
• تسلط به Python و توسعه Backend
• آشنایی با طراحی و توسعه API
• تجربه کار با پایگاه دادههای SQL و NoSQL
• آشنایی با JavaScript و حداقل یکی از فریمورکهای Frontend
• آشنایی با Git و فرآیندهای توسعه نرمافزار
• توانایی تحلیل، طراحی و پیادهسازی راهکارهای فنی
موارد زیر مزیت محسوب میشوند:
• تجربه کار با Docker و Containerization
• آشنایی با Linux
• تجربه کار با معماری Microservices
• آشنایی با مفاهیم Cloud و DevOps
ما به دنبال فردی مسئولیتپذیر، علاقهمند به یادگیری و توانمند در حل مسئله هستیم که بتواند در توسعه و بهبود یک محصول نرمافزاری مشارکت مؤثر داشته باشد.
📍 محل فعالیت: تهران
⚠️ پس از تأیید نهایی و شروع همکاری، حضور در محل کار الزامی خواهد بود.
📩 در صورت تمایل، رزومه خود را ارسال کنید.
@Re_security
🕸 Everyone talks about the "dark web." Almost no one understands it.
After working through "Exploring the Dark Web," here's what actually stood out:
🔹 ~94% of the web is never indexed by Google — but most of it is harmless (email, banking, databases).
🔹 Tor wasn't built by hackers. It began as a US Naval Research project to protect intelligence communications, and went public in 2002.
🔹 Anonymity is a discipline, not a download. Tor hides your route — not the data you type into a form.
🔹 ~60% of Tor traffic is fully legitimate: journalists, whistleblowers, researchers, people escaping censorship.
🔹 The recurring lesson from every major darknet takedown: anonymity ≠ immunity. The weakest link is almost always human.
The takeaway for defenders: you can't protect against a threat you refuse to understand. Dark web monitoring (OSINT) is now a core part of threat intelligence — leaked credentials and emerging threats often surface there first.
Curiosity is good. Caution is better. 🔒
What's the biggest misconception you still hear about the dark web?
#CyberSecurity #DarkWeb #OSINT #ThreatIntelligence #BlueTeam #InfoSec #Privacy
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
+1
دو تن از بزرگان در حوزهی امنیت مدلهای یادگیری ماشین
نیکولاس کارلینی که ۳۶ سال سن دارد و هماکنون در آنتروپیک مشغول به کار است، پیش از آن در دیپمایند گوگل، جزو تیم تحقیقاتی بوده. ایشان لیسانس ریاضی و دکتری علوم کامپیوتر خود را از دانشگاه برکلی دریافت کردهاند.
خود نیکولاس میگوید:
من در نقطهی اشتراک مدلهای یادگیری ماشین و مباحث امنیتی کار کردهام و میکنم.
آقای نیکولاس پیپرنات نیز در حال حاضر دانشیار دانشگاه تورنتو هستند. ایشان نیز پس از فارغالتحصیلی از دانشگاه پنسیلوانیا، در دیپمایند گوگل مشغول شدهاند.
خلاصه اگر در این حوزه دنبال آدم خفن میگردید، اشخاصی که هم صنعت را تجربه کردهاند و هم از دل دانشگاه بیرون آمدهاند، این دو نفر جزو بهترینها هستند.
یکی از شاخههایی که بزودی در دنیا خواهد ترکاند، همین
MLSecOps
هست. چون کدهایی که با وایبکدینگ تولید میشوند، هر روز با دقت کمتر وارد بازی میشن و بدون اینکه خودمون خبر داشته باشیم، کلی حفره در سرویس یا مدلمون باز میگذاریم.
.
#MLSecOps
با احترام، از افراد متخصص، توانمند و باانگیزه دعوت میکنیم فرصت همکاری با دژپاد را بررسی نمایند.
فرصت همکاری در دژپاد
شرکت دژپاد در راستای توسعه تیم فنی و تخصصی خود، از افراد توانمند و متخصص برای موقعیتهای زیر دعوت به همکاری مینماید:
🔹 کارشناس شبکه و امنیت شبکه
مسلط به مفاهیم Network & Security، مباحث CCNA، تجهیزات FortiGate، پروتکلهای Layer 2 و Layer 3، فایروالهای NGFW و WAF، طراحی و مدیریت شبکههای سازمانی و عیبیابی زیرساختهای پیچیده.
🔹 کارشناس ارشد زیرساخت مجازیسازی و ذخیرهسازی
مسلط به VMware، Storage های HPE و DELL، شبکههای SAN Fabric، سرورهای HPE، راهکارهای Backup & Recovery و مدیریت و عیبیابی زیرساختهای مجازیسازی و ذخیرهسازی سازمانی.
📍 محل کار: تهران
🕒 نوع همکاری: تماموقت
📩 ارسال رزومه به ایمیل:
hr@dejpaad.com
#استخدام #فرصت_شغلی #امنیت_شبکه #زیرساخت #مجازی_سازی #Storage #VMware #Fortinet #NetworkSecurity #Infrastructure #Hiring #JobOpportunity #دژپاد #Dejpaad
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
A FREE 25+-hour course on getting started in OT/ICS cybersecurity?
Over 110,000 people have watched my course on YouTube.
At least the first part 🙂
Over 2,000+ people have taken my course live.
Here are a few of the nice things some students have said:
"I got the job because of your course!"
"The contents covered during this week were amazing and insightful, and I learned so much from it."
"This was by far the best training that I have ever received on OT/ICS Cybersecurity. Your teaching style is absolutely top notch."
"It was interesting to learn from your unique and insightful perspectives. Not many folks have a strong exposure to Industry and OT Security experience."
"It is really useful and beneficial course. I really appreciate your time that you sacrifice for us to make we more understand about the ICS Cyber Security especially in a way of view from the IT perspective in OT environment."
"It helped me have a much greater understanding of the environment, technologies and strategies to secure ICS/OT facilities!"
"I just wanted to express my gratitude and appreciation for the amazing course! The contents covered during this week were amazing and insightful, and I learned so much from it."
"I really enjoyed the class and learned quite a lot of new information, including how much I don't know about the topic. It was really fascinating to me. And of course, you are an excellent teacher."
"You have a horrible singing voice, Grandpa!"
Want to learn more about OT/ICS cybersecurity?
The complete course is now available!
With 200+ review questions to test your knowledge!
You can find the entire course on my YouTube channel at https://www.youtube.com/@utilsec
Here's the section list:
Part 1: Introduction to Getting Started in ICS/OT Cyber Security
Part 2: ICS/OT Cyber Security Overview
Part 3: Control Systems & Protocols
Part 4: Secure Network Architecture
Part 5: Asset Registers & Control Systems Inventory
Part 6: Threat & Vulnerability Management
Part 7: OSINT for Industrial Controls
Part 8: Incident Detection & Response
Part 9: Industry Standards & Regulations
Part 10: Introduction to ICS/OT Penetration Testing
Part 11: Review Questions
Thank you for taking the time to check it out!
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
🛡 "Never trust, always verify." — Zero Trust, demystified
I just went through the NSA's "Zero Trust Implementation Guideline (ZIG) Primer" (Jan 2026) — a clear entry point into how large, high-stakes organizations actually operationalize Zero Trust, not just talk about it. Sharing a few takeaways 👇
🔑 The core mindset: Drop perimeter-based thinking. Continuously authenticate and authorize every user, device, and application — built on two assumptions: "never trust, always verify" and "assume breach."
🧱 It's structured around the DoW ZT Framework's seven pillars: User, Device, Application & Workload, Data, Network & Environment, Automation & Orchestration, and Visibility & Analytics — each broken into Capabilities → Activities you can actually implement.
🪜 A phased, modular roadmap instead of "boil the ocean":
Discovery — inventory your Data, Applications, Assets & Services (DAAS) and identities
Phase One & Two — Target-level capabilities (think MFA, identity lifecycle, EDR/XDR, comply-to-connect, data tagging)
Phase Three & Four — Advanced-level maturity
📚 What I appreciated: it ties together the big reference points — NIST SP 800-207, the CISA Zero Trust Maturity Model 2.0, and the DoW ZT Strategy — so you see how the standards fit into one implementation path.
💡 Biggest reminder for me: Zero Trust is a journey of capabilities, not a product you buy. Start with visibility and identity, then build outward.
A great vendor-neutral read for anyone working in security architecture, identity, or critical infrastructure. Credit to the NSA Cybersecurity Directorate for publishing it openly. 🙏
What's the hardest pillar to get right in practice — Identity, Data, or Visibility & Analytics? 💬
#ZeroTrust #CyberSecurity #NIST80027 #ZTA #IdentitySecurity #NSA #SecurityArchitecture #DefenseInDepth #InfoSec #CriticalInfrastructure
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
📢 Call for Papers: ICETCS 2026
We are pleased to announce the 3rd International Conference on Emerging Trends in Cybersecurity (ICETCS 2026), taking place at the University of Genoa, Italy, on 12–13 October 2026 in hybrid mode.
ICETCS 2026 will provide a global platform for researchers, academics, industry professionals, and policymakers to share insights, present cutting-edge research, and explore emerging trends in cyber and hardware security.
The conference welcomes submissions across a wide range of areas, including:
🔹 Cybersecurity for network space challenges
🔹 Cybersecurity for mobility and transport
🔹 Cybersecurity for IoT
🔹 Cybersecurity for connected autonomous vehicles
🔹 Hardware security
🔹 Cloud security
🔹 Blockchain security
🔹 Space security
All accepted technical papers will be published in Lecture Notes in Electrical Engineering, a Scopus-indexed Springer proceedings series. Extended papers will also be invited for submission to selected journals.
📅 Important dates:
Paper submission deadline: 31 July 2026
Notification of acceptance: 31 August 2026
Final paper submission deadline: 14 September 2026
Early bird registration deadline: 20 September 2026
Final registration deadline: 4 October 2026
📍 Venue: University of Genoa, Italy
🌐 Mode: Hybrid
We warmly invite researchers and practitioners working in cybersecurity, hardware security, IoT, mobility, blockchain, cloud, and space security to submit their work and join this international forum for knowledge exchange and collaboration.
#ICETCS2026 #CallForPapers #Cybersecurity #HardwareSecurity #IoT #CloudSecurity #BlockchainSecurity #SpaceSecurity #ConnectedVehicles #CyberResilience #Springer #AcademicResearch
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
