wGrow - Team Notes

In today's world, securing networks from possible threats and attacks is more than a necessity; it's an absolute must. In my role as an AWS network security expert, I recently had an opportunity to work on an interesting project where the customer required a network firewall setup for an Internet Application Server.

This document provides a detailed overview of the security architecture we implemented for a medical service group on Amazon Web Services (AWS) and Microsoft Azure. It covers various facets of cloud server security - from initial setup to continuous monitoring and improvements, showcasing our comprehensive expertise in ensuring robust and secure cloud infrastructure.

Let's Encrypt is a free, automated, and open Certificate Authority (CA) that provides SSL/TLS certificates for websites. The ACME (Automatic Certificate Management Environment) protocol is used to automate the process of obtaining and renewing SSL certificates. In this article, we will create a Windows Service that automates the process of obtaining, installing, and renewing Let's Encrypt SSL certificates for IIS websites using the ACME challenge.

Remote Desktop Protocol (RDP) is a widely used feature in Windows to access a computer remotely. However, it can also be a target for malicious activities, such as brute force attacks. In this article, we will create a Windows Service that monitors the Windows Event Log for multiple failed RDP authentication attempts within a specific time frame, sends an email alert to the server owner, and blocks the IP address temporarily.

It's essential to ensure that SQL Server is secure and protected against potential cyber threats. Government cybersecurity requirements mandate that all agencies' SQL Server must undergo hardening before being put into production. We summarize the comprehensive SQL Server hardening checklist and best practices to secure SQL Server environment for an agency data centre.

In this case study, we describe the process of virtualizing a legacy Windows Server 2000 application that gathers data from semiconductor testing equipment and produces reports for analysis. The application was running on an unsupported HP 2U Server ProLiant, and the management wanted to address the security risks and high maintenance costs associated with the outdated hardware and operating system. Our goal was to virtualize the server and application while preserving their functionality, and t...

This technical article provides an overview of SQL Server Transparent Data Encryption (TDE) and demonstrates how to implement TDE in an ASP.NET web project. The article explains the benefits of TDE, the encryption process, and provides sample SQL and C# code to illustrate its use for securing sensitive data in a web application.

This technical article details the process of leveraging blockchain technology to secure complex financial forecasting parameters and reports for a Singapore company that provides financial forecasting systems to commercial real estate management companies. By utilizing the Ethereum blockchain to store hashed values of forecasting settings and completed reports, the integrity and security of the data are ensured, while maintaining confidentiality.

In light of policy changes, property developers are now expected to create their own Executive Condominium (EC) Sales and Report Systems, rather than rely on the Housing and Development Board (HDB) provided system. This shift presents several challenges, including secure data integration with the HDB system, real-time report generation, and high-performance requirements during property launch days. In this article, we discuss the design of a secure and high-performance EC Sales and Report System...