This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
yuvalmamka
Employee
Employee
‎2022-12-27 02:18 AM

CloudGuard AppSec Workshop - Azure | The Video Edition! Now Available

Hi CloudGuaders!

While I hope most of you celebrating Christmas and are having a great time with family and friends, I edited for you the videos from the CloudGuard AppSec workshop!

Do you remember @Shay_Levin and I hosted several workshops a few weeks ago?
So now, in addition to the CloudGuard AppSec Workshop: Step-by-Step Guide you can follow, now you have these videos to follow!

Azure Single Gateway Deployment:

(view in My Videos)

Azure VMSS Gateways Deployment:

(view in My Videos)

 

Enjoy! And let us know what further content you would like to get 😀

Cheers,

Yuval

(1)
8 Replies
Shay_Levin
Admin
Admin
‎2022-12-27 02:33 AM

Excellent videos @yuvalmamka as usual

0 Kudos
kamaladmire1
Contributor
Contributor
‎2023-01-03 02:27 AM

Amazing workshop, can you please share the link where you have downloaded or compile the list for attacks i.e. SQL injection ldap etc. I also wanted to know  that you used 2 Public IP's, I do understand that one used for host file to resolve DNS and forward to external load balancer, however I am confused with another you used under the profile for Nginx with port:1234 is because you hosted websites somewhere else? and how traffic is routed ??

Thanks 

 

0 Kudos
Blason_R
Leader
Leader
‎2023-01-03 02:30 AM
In response to kamaladmire1

With using proxy_pass. That is Appsec is used as a Nginx module and can intercept the requests seen by Nginx reverse proxy.

Thanks and Regards,
Blason R
CCSA,CCSE,CCCS
yuvalmamka
Employee
Employee
‎2023-01-03 03:53 AM
In response to kamaladmire1

Hey,

You can find Shay's manual how to deploy the website with the attacks here: https://community.checkpoint.com/t5/Application-Security/Vulnerable-applications-for-testing-Guide/t...

Regarding your question - yes. the assets that we protected on this workshop were hosted externally, 2 websites on the same server (that's why there are different ports).

AppSec is using NGINX as a base platform, therefore the reverse proxy streamed the traffic to the URL I configured.

(1)
kamaladmire1
Contributor
Contributor
‎2023-01-03 04:37 AM
In response to yuvalmamka

Thank for clarification

0 Kudos
kamaladmire1
Contributor
Contributor
‎2023-01-05 03:53 PM
In response to yuvalmamka

HI Yuvalmamka

sorry for the pain, I have tried the project and juiceshop config that i have used its only for http and not for https I am having issues to find config on github which run juiceshop on https, can you directly point me to exact git repository not the generic main page. 

 

thanks in adavnce. 

 

0 Kudos
yuvalmamka
Employee
Employee
‎2023-01-08 01:06 AM
In response to kamaladmire1

@shayle Can you advice on it?

0 Kudos
Shay_Levin
Admin
Admin
‎2023-01-08 01:27 AM
In response to kamaladmire1

Hi, 

I didn't find a way to activate https on the JuiceShop , so i have deployed an nginx container that act as a reverse proxy for the juciseshop.

https://faun.pub/setting-up-ssl-certificates-for-nginx-in-docker-environ-e7eec5ebb418

(1)

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events