Tenable blog
Cybersecurity Snapshot: CISA Lists Security Features OT Products Should Have and Publishes AI Collaboration Playbook
How to Stop the Kerberos Pre-Authentication Attack in Active Directory
Here’s a look at how to safeguard your Active Directory from the known roasting attack on Kerberos Pre-Authentication.As part of the Kerberos authentication process in Active Directory, there is an initial request to authenticate without a password. This is an artifact left over from Kerberos versio...
High-Fidelity Attack Surface Mapping
Eliminate blind spots and hinder attackers using these three tips to create a high-fidelity map of your organization’s entire attack surface....
The ABCs of Azure Identity Governance Tools
Discover the main Azure mechanisms for governing identities and providing access permissions....
NetFlow is the Wrong Way to Do Attack Surface Mapping
If your organization relies on NetFlow data for asset management, you're likely overlooking vital information to map your attack surface....
Crawling Is the Wrong Way To Do Attack Surface Mapping
When analyzing methods to identify assets, crawling should be one tool in the toolbox, but not the only one. If you use crawling exclusively, you’ll likely miss a lot of assets....
AWS’s Access Analyzer Preview Access is Great — But Is It Enough?
Learn the ins and outs of the preview access capability in Access Analyzer....
Deconstructing Azure Access Management using RBAC
Take a focused look at the basics of Azure RBAC (role based access control) -- the main mechanism in Azure for granting permissions to resources. Familiarize you with Azure AD identities and find out how to grant them access to your organization’s resources....
Infrastructure as Code Security Requires Programmatic Controls
Empower develops with a programmatic approach to security. Here's what you need to know. The concept of shifting security as far left into development as possible is not new, and it is fairly easy to see the benefits: when you catch issues earlier in the software development lifecycle (SDLC) you ...
Static Lists Are The Wrong Way to Do Attack Surface Mapping
When identifying and cataloging assets, static lists leave your organization vulnerable to constant changes across your attack surface. ...