I-AhaSlides Iphumelele Ukuhlolwa Kokungena Kwe-Viettel Cyber ​​Security

izimemezelo

Iqembu le-AhaSlides I-30 Agasti, 2024 4 min ifundwe

ama-ahaslides aphumelele ukuhlolwa kokungena

Sijabule kakhulu ukumemezela ukuthi i-AhaSlides isebenzise konke okuhlanganisa i-Greybox Pentest elawulwa yi-Viettel Cyber ​​Security. Lokhu kuhlolwa okujulile kwezokuphepha kuqondise izinkundla zethu ezimbili eziphambili ze-inthanethi: uhlelo lokusebenza lwe-Presenter (umethuli.ahaslides.com) kanye nohlelo lokusebenza lwezithameli (izethameli.ahaslides.com).

Ukuhlolwa kwezokuphepha, okwaqala ngoDisemba 20 kuya kuDisemba 27, 2023, kwakuhilela ukuhlola ngokucophelela ubuthakathaka obuhlukahlukene bezokuphepha. Ithimba elivela ku-Viettel Cyber ​​Security lenze ukuhlaziya okujulile futhi lahlaba umkhosi izindawo ezimbalwa okufanele zithuthukiswe ngaphakathi kwesistimu yethu.

Amaphuzu ayisihluthulelo:

  • Isikhathi Sokuhlola: Disemba 20-27, 2023
  • Ububanzi: Ukuhlaziywa okujulile kobuthakathaka obuhlukahlukene bokuvikeleka obunamandla
  • Umphumela: I-AhaSlides iphumelele isivivinyo ngemuva kokubhekana nokukhubazeka okuhlonziwe
  • Umthelela: Ukuphepha okuthuthukisiwe nokuthembeka kwabasebenzisi bethu

Iyini iPentest yeViettel Security?

I-Pentest, emfishane Yokuhlola Ukungena, empeleni iwukuhlasela kwe-inthanethi okuyinhlekisa kusistimu yakho ukuze kuvuleke izimbungulu ezisebenzisekayo. Kumongo wezinhlelo zokusebenza zewebhu, i-Pentest iwukuhlola okuphelele ukukhomba, ukuhlaziya, nokubika ngamaphutha okuvikela ngaphakathi kohlelo lokusebenza. Kucabange njengokuvivinya ingcindezi kokuzivikela kwesistimu yakho - kubonisa lapho ukuphulwa okungenzeka kube khona.

Iqhutshwa ochwepheshe abanolwazi e-Viettel Cyber ​​Security, inja ephezulu endaweni ye-cybersecurity, lokhu kuhlolwa kuyingxenye yesevisi yabo yezokuphepha ebanzi. Indlela yokuhlola ye-Greybox esetshenziswa ekuhloleni kwethu ihlanganisa izici zakho kokubili ukuhlolwa kwebhokisi elimnyama nebhokisi elimhlophe. Abahloli banobuhlakani obuthile ekusebenzeni kwangaphakathi kweplathifomu yethu, abalingisa ukuhlaselwa yisigebengu esikwazi ukusebenzisana nesistimu.

Ngokuxhashazwa ngendlela ehlelekile izingxenye ezihlukahlukene zengqalasizinda yethu yewebhu, kusukela ekulungiseni kabi iseva kanye nokubhalwa phansi kwesizindalwazi kuya ekuqinisekiseni okuphukile nokuvezwa kwedatha ebucayi, i-Pentest inikeza isithombe esingokoqobo sezinsongo ezingaba khona. Iphelele, ihlanganisa ama-vectors ahlukahlukene, futhi yenziwa endaweni elawulwayo ukuze kuqinisekiswe ukuthi akukho monakalo wangempela kumasistimu ahilelekile.

Umbiko wokugcina awukhombisi nje kuphela ubungozi kodwa futhi ububeka phambili ngobunzima futhi uhlanganisa nezincomo zokubulungisa. Ukuphumelela uhlolo olubanzi noluqinile kangaka kugcizelela amandla ezokuphepha ku-inthanethi zenhlangano futhi kuyisakhiwo esiyisisekelo sokwethenjwa enkathini yedijithali.

Ubuthakathaka Okuhlonziwe kanye Nokulungiswa

Phakathi nesigaba sokuhlola, kutholakale ubungozi obuningana, kusukela ku-Cross-Site Scripting (XSS) kuya ezindabeni ze-Broken Access Control (BAC). Ukucacisa, ukuhlola kwembule ubungozi obufana ne-Stored XSS kuzo zonke izici eziningi, I-Insecure Direct Object References (IDOR) kumsebenzi wokususa Iphrezentheshini, kanye Nokwenyuka Kwelungelo kuyo yonke imisebenzi ehlukahlukene.

Ithimba lobuchwepheshe be-AhaSlides, elisebenzisana ne-Viettel Cyber ​​Security, libhekane nazo zonke izinkinga ezikhonjiwe.. Izinyathelo ezinjengokuhlunga idatha yokokufaka, ukubhala ngekhodi kokukhishwayo kwedatha, ukusetshenziswa kwezihloko ezifanele zokuphendula, nokwamukelwa kweNqubomgomo Eqinile Yokuphepha Kokuqukethwe (CSP) isetshenziswe ukuze kuqiniswe ukuzivikela kwethu.

I-AhaSlides Iphumelele Ngempumelelo Ukuhlolwa Kokungena NgeViettel Security

Kokubili izicelo ze-Presenter nezezethameli ziphumelele ngempumelelo ukuhlolwa okuphelele kokungena okwenziwa yi-Viettel Security. Lokhu kuhlola okuqinile kugcizelela ukuzibophezela kwethu emikhubeni yokuvikela eqinile kanye nokuvikela idatha yomsebenzisi.

Ukuhlolwa, okwenziwa ngoDisemba 2023, kwasebenzisa indlela ye-Greybox, elingisa isimo sokuhlasela somhlaba wangempela. Ochwepheshe bezokuphepha be-Viettel bahlole ngokucophelela inkundla yethu ukuze bathole ubungozi, bahlonza izindawo okufanele zithuthukiswe.

Ubungozi obuhlonziwe busingathwe ithimba lonjiniyela be-AhaSlides ngokubambisana ne-Viettel Security. Izinyathelo ezisetshenzisiwe zihlanganisa ukuhlunga idatha yokufaka, ukubhala ngekhodi idatha ephumayo, Inqubomgomo Eqinile Yokuphepha Kokuqukethwe (CSP), kanye nezihloko zokuphendula ezifanele ukuze kuthuthukiswe inkundla.

I-AhaSlides iphinde yatshala imali kumathuluzi okuqapha athuthukile okuthola usongo lwesikhathi sangempela kanye nokuphendula. Ukwengeza, izivumelwano zethu zokuphendula isigameko ziye zalungiswa ukuze kuqinisekiswe isenzo esisheshayo nesisebenzayo uma kwenzeka kwephulwa ukuphepha.

Inkundla Ephephile Nevikelekile

Abasebenzisi bangaqiniseka ukuthi idatha yabo ivikelekile futhi ukuzizwisa kwabo okusebenzisanayo kuhlala kuvikelekile. Ngokuhlolwa kokuphepha okuqhubekayo kanye nokwenza ngcono okuqhubekayo, sizibophezele ekwakheni inkundla ethembekile nevikelekile yabasebenzisi bethu.

Omaka:
Iqembu le-AhaSlides

AhaSlides Team

Sithandwa abasebenzisi abayizigidi ezingu-2 emhlabeni wonke, siyiqembu lothisha, osomabhizinisi, nabathandi bezobuchwepheshe abazinikele ekwenzeni izethulo zakho zingagcini nje ezifundisayo, kodwa zikhumbuleke ngempela.

Amathiphu okuzibandakanya nama-Poll & Trivia

inkanyezi yephephandaba
👏 Siyabonga ngokubhalisa!

Okuningi okuvela ku-AhaSlides

I-AhaSlides ngo-2022 - Buyela kabusha Izici zethu Ezintsha Kakhulu!

izimemezelo

I-AhaSlides ngo-2022 - Buyela kabusha Izici zethu Ezintsha Kakhulu!
I-AhaSlides yase-Ukraine

izimemezelo

I-AhaSlides yase-Ukraine
I-Hopin x AhaSlides: Ukusebenzisana Okusha Kwemicimbi Esebenzisanayo

izimemezelo

I-Hopin x AhaSlides: Ukusebenzisana Okusha Kwemicimbi Esebenzisanayo
Abantu be-AhaSlides | Ukwazi uLawrence Haywood

izimemezelo

Abantu be-AhaSlides | Ukwazi uLawrence Haywood
Ukuphawula okusha kwe-AhaSlides

izimemezelo

Ukuphawula okusha kwe-AhaSlides
I-NTU Alumni Xhuma futhi Uhlanganyele Engqungqutheleni Yesifunda nge-AhaSlides

izimemezelo

I-NTU Alumni Xhuma futhi Uhlanganyele Engqungqutheleni Yesifunda nge-AhaSlides
I-AhaSlides ku-HR Tech Festival Asia 2024

izimemezelo

I-AhaSlides ku-HR Tech Festival Asia 2024
Ukuhlanganiswa kwe-AhaSlides x Zoom: I-Dynamic Duo oyidingayo ukuze uthole izethulo ezijabulisayo ezisebenzisanayo

izimemezelo

Ukuhlanganiswa kwe-AhaSlides x Zoom: I-Dynamic Duo oyidingayo ukuze uthole izethulo ezijabulisayo ezisebenzisanayo