IT Pro Tuesday #322

Welcome back to IT Pro Tuesday!

In the latest Security Swarm Podcast: “Top Spear Phishing Methods,” we dive into the top spear phishing methods, including initial contact, tax/W2, C-suite/CEO, lawyer, banking, and gift card fraud. We analyze the differences in the prevalence of these methods between enterprises and smaller businesses and provide insights on how organizations can combat these threats through training and robust processes.

We’re looking for favorite tips and tools we can share with the community… those that help you do your job better and more easily. Please share your suggestions on the IT Pro Tuesday subreddit, and we’ll be featuring them in the coming weeks.

Now on to this week’s list!

A Free Tool

IPVS implements transport-layer load balancing inside the Linux kernel, so a host can act as a load balancer at the front of a cluster of real servers. Can direct requests for TCP/UDP based services to the real servers, and make services of the real servers appear as a virtual service on a single IP address. friekert explains, “I used to use it to load balance DNS recursors and it worked perfectly. Combining it with some VRRP implementation such as ucarp or keepalived you can even create a HA setup.”

A Tip

elpollodiablox offers some wise advice on coping after a big mistake on the job: 

“So you learned what not to do, right? And you learned that, if it happens, how to fix it? That’s the important thing here. Mistakes are made all the time. Owning it and learning from it is all you can do. Be humble, take your medicine, and keep on keepin’ on.”

Another Free Tool

Hoarder is an open-source, self-hostable bookmarking app that leverages AI to auto tag your files and search through all your links, notes, images, and pdfs. Indexes content for blazingly fast full-text searches. Kindly shared by its author, MohamedBassem.

yet another free tool

MobaXterm is a toolbox of all the important remote network tools (SSH, X11, RDP, VNC, FTP, MOSH, etc.) and Unix commands (bash, ls, cat, sed, grep, awk, rsync, etc.) for Windows desktop. Delivered via a single portable exe file that works out of the box. RememberCitadel adds, “I prefer MobaXterm myself over RDM+putty+winscp, it does everything they all do in one.”

training resource

Crypto 101 is an intro course on cryptography that includes a video presentation and companion book on systems such as SSL/TLS block ciphers, stream ciphers, hash functions, message authentication codes, public key encryption, key agreement protocols, and signature algorithms. Kindly suggested by patmorgan235.

P.S. Bonus Free Tools

Bitlug Subnet Toolbox offers networking tools that provide quick insights into subnet data structures. Tools include a graphic calculator, prefix-list tool with subnet optimizer, allocate subnets, NAT64 encoder/decoder, patterns, diffs, tree, routing, subnet challenge, and allocating IPv6 address space. buzzly says, “A bit more than your average stock subnet calculator. It will do overlaps, template substitution, nat64 translations.”

XPipe is an extensible shell connection hub and remote file manager that allows you to access your entire server infrastructure from your local machine. Works on top of installed CLI programs like ssh, docker, kubectl, etc. and needs no setup on remote systems. Fully integrates with tools like text/code editors, terminals, shells, command-line tools and more. Community version includes unlimited connection, container support, file management, shell scripting, and Git vault synchronization. Thanks to Zickoray for the recommendation.