KPN-CISO/kpn-security-policy KPN-CISO/kpn-security-policy

  • Stars
    star
    142
  • Rank 258,495 (Top 6 %)
  • Language
  • Created over 8 years ago
  • Updated almost 4 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
KPN-CISO/kpn-security-policy
github

KPN-CISO

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

KPN Security Policy

KPN Security Policy created by the KPN CISO Office

Go to https://ciso-ksp.kpnnet.org for the latest KPN Security Policy.

Move to a new platform and the end of the KSP Github channel

The KPN Security Policy was published on Github to openly and freely make our security, privacy and business continuity policy. We've made it available on Github for ease of use and a request from Twitter upon our initial publication through an iOS app. We've move to our new platform completely and we've also ensured that external access to our policies remained open. However, we've decided to stop with our Github channel and offer an API for those whom wish to integrate our data and a web-interface with a direct database connection to our internal system. This will ensure our policy will stay as current as possible on the externally published side. Our content will therefor be archived, but available, through the Git tags for historical reasons.

Content

The KPN Security Policy on physical security, information security, business continuity and privacy.

Not published

The guideline documents and tools. The motivation is that we do not publish information that can be tied back to our internal processes as we consider this confidential information.

Sharing is caring philosophy

We hope to inspire readers to learn about our choices and perhaps copy ideas. We are open for feedback to also learn from other experiences.

KPN Security

https://www.kpn.com/zakelijk/security.htm

The policy locations:

  1. The KPN Security Policy is featured in a public website all external users, suppliers, customers, etc.
  2. Google Play Store and Apple AppStore: search for "KPN CISO" for tablets and phones
  3. For KPN employees:
    • with a company managed device: go to the Company Portal (Bedrijfsportal in Dutch) app and go to the Apps tab. Search for "KPN CISO" for the KSP app.
    • On TeamKPN: select KPN and Security on the navigation bar or use https://ksp.kpnnet.org through the VPN or over the corporate intranet.
  4. On special request, the public website also has an API.

KPN Security Policy releases are discontinued and archived

The releases are bundled per git tag.

More Repositories

1

AttackMatrix

AttackMatrix is a Python module and/or webpage to interact with and explore MITRE's ATT&CK's matrices.
Python
17
star
2

shamir-secret

A set of commandline tools for creating and recovering Shamir Secret Shares.
C
15
star
3

certificate-inventory-powershell

Scanner which is capable of scanning multiple hosts or multiple subnets on an SSL port and output a CSV file with the certificate details.
PowerShell
15
star
4

DRA_writeup

Writeup of the Oracle DSR stack buffer overflow vulnerability (DRA) CVE-2014-6598
14
star
5

certificate-inventory

Scanner which is capable of scanning multiple hosts or multiple subnets on an SSL port and output a CSV file with the certificate details.
Shell
14
star
6

netchecker

A tool for checking if IPv4/IPv6 addresses and CIDRs belong to specific netblocks (ASes). This is particularly useful when checking if your netblocks/ASes occur in dumps/leaks (e.g. for Threat Intel purposes).
Python
11
star
7

Network-Detection

A collection of network detection methods and rules.
5
star
8

pq-wg-theory

Post-quantum Wireguard (Theory)
5
star
9

sftpdropzone

SFTP Dropzone and secure data extraction example
Shell
4
star
10

eiqlib

A python3 library for interacting with EclecticIQ
Python
4
star
11

VTcheck

VirusTotal checker
Python
3
star
12

MISP-to-EIQ

MISP JSON to EIQ JSON converter
Python
3
star
13

OTO

Opleiden Trainen Oefenen (Education, Training, Exercise)
3
star
14

EIQ-to-IDS

Toolkit to take an EclecticIQ JSON outgoing feed, extract the useful observables and transform those into IDS rulesets.
Python
2
star
15

EIQ-to-DATP

Take an EclecticIQ outgoing feed and put indicators into Microsoft Defender ATP
Python
1
star
16

DATP-to-EIQ

Ingest Microsoft Defender ATP alerts into EclecticIQ as Incidents and Sightings
Python
1
star
17

CVE-2019-9745

Write-up on the CVE-2019-9745 vulnerability.
1
star
18

aiki

aiki.go source code
Go
1
star