Connecting Postman to Firepower Management Center API
A few months back, I wrote an article about my Initial Observation on the Firepower FMC API. Today’s article takes this one step further with a step-to-step guide to connecting Postman to the FMC API. It is worth noting that this is not a directly useful process, but a process that should be expanded upon to achieve any objective that is better served by an API. Use cases might include bulk changes or integration with other security applications.
The Official REST API Guide can be found at the following URL.
Firepower REST API Quick Start Guide
It is also worth mentioning that the online API documentation can be found at https://<FMC-IP>/api-explorer on the FMC installation.
The general flow of the process we will be following is:
- Connect to FMC using basic authentication
- View the response to obtain the X-auth-access-token and DOMAIN-UUID
- Leverage the X-auth-access-token and DOMAIN-UUID in a request for access control policies
- Leverage the token, domain and policy ID to obtain a list of rules in that policy
- Leverage the token, domain, policy ID and rule ID to obtain rule details
Throughout this process, we will not store any variables and the process will be completely manual for comprehensive understanding. Continue reading
Selecting an ISP for Business: Factors to Consider
Price is an obvious consideration when picking an ISP, but security and co-location services are among other important criteria to consider.
Minecraft API with Workers + Coffeescript
The following is a guest post by Ashcon Partovi, a computer science and business undergraduate at the University of British Columbia in Vancouver, Canada. He's the founder of a popular Minecraft multiplayer server, stratus.network, that provides competitive, team-based gameplay to thousands of players every week
If you've ever played a video game in the past couple of years, chances are you know about Minecraft. You might be familiar with the game or even planted a tree or two, but what you might not know about is the vast number of Minecraft online communities. In this post, I'm going to describe how I used Cloudflare Workers to deploy and scale a production-grade API that solves a big problem for these Minecraft websites.
Introducing the Problem
Here is an example of my Minecraft player profile from one of the many multiplayer websites. It shows some identity information such as my username, a bitmap of my avatar, and a preview of my friends. Although rendering this page with 49 bitmap avatars may seem like an easy task, it's far from trivial. In fact, it's unnecessarily complicated.
Here is the current workflow to render a player profile on a website given Continue reading
Awake Security CEO Jumped Ship at Cylance to Build a New Unicorn
Rahul Kashyap joins Awake from endpoint security company Cylance and says while endpoint has seen all the action over the past couple of years, “the network is where the opportunity lies.”
Turnium Using Mature SD-WAN Platform to Target Juniper, HPE Customers
The platform uses technology from Multapplied that is used in a white label form by Comcast, Rogers Communications in Canada, and Fusion Broadband in Australia.
ARM Strengthens Its IoT Portfolio With $600M Treasure Data Purchase
Its push into IoT is undoubtedly initiated by ARM’s parent company SoftBank, which is investing billions in technologies including IoT through its SoftBank Vision Fund.
IBM Trials Blockchain Platform With Barclays, Citi
The company also scored a $140 million digital banking deal with Thai bank Krungsri.
Research; HTTPS Interceptions
I have written elsewhere about the problems with the “little green lock” shown by browsers to indicate a web page (or site) is secure. In that article, I considered the problem of freely available certificates, and a hole in the way browsers load pages. In March of 2017, another paper was published documenting another problem with the “green lock” paradigm—the impact of HTTPS interception. In theory, a successful HTTPS session means the session between host and the server has been encrypted, which means no third party can read the contents of the packets passing between the two.
This works, modulo the trustworthiness of the certificates involved in encrypting the traffic, so long as there is no-one in the middle of the connection encrypting packets from the receiver, and re-encrypting them towards the transmitter. This “man in the middle,” or MITM, can read the contents of all the packets in the exchange, even though the data is encrypted on transmit. Surely such MITM situations are rare, right?
Right.
The researchers in this paper set out to discover just how often HTTPS (LTS) sessions are terminated and re-encrypted by some device or piece of software in the middle. To discover how often Continue reading
Digital Twins Start to Gain Foothold in Enterprise Monitoring, Management
Software AG recently released a digital twin framework based on its management and monitoring platform. But according to Gartner VP Marc Halpern while digital twin technology is at peak hype, it still has a while to go.
ZTE Slashes Q1 Bottom Line by $1B
That swing was attributed to the impact of being banned from purchasing U.S. components and $1.4 billion in total fines ZTE agreed to pay to the U.S. government to lift the ban.
Nokia Scores $3.5B 5G Contract With T-Mobile
The announcement comes just days after Nokia CEO Rajeev Suri admitted the company lost some of its Verizon business in certain markets.