<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:media="http://search.yahoo.com/mrss/"><channel><title><![CDATA[Chaz Kondo Blog]]></title><description><![CDATA[Everything from tech to software development to Math.Random()]]></description><link>https://www.chazkondo.com/</link><image><url>https://www.chazkondo.com/myfavicon.png</url><title>Chaz Kondo Blog</title><link>https://www.chazkondo.com/</link></image><generator>Ghost 2.9</generator><lastBuildDate>Fri, 16 Dec 2022 02:29:17 GMT</lastBuildDate><atom:link href="https://www.chazkondo.com/rss/" rel="self" type="application/rss+xml"/><ttl>60</ttl><item><title><![CDATA[CK Source Code Now Available]]></title><description><![CDATA[chazkondo/chazkondo-websiteMy personal website made for fun and to showcase random updates - chazkondo/chazkondo-websitechazkondoGitHub [https://github.com/chazkondo/chazkondo-website]For those who are interested. I have released my messy code that needs to be drastically cleaned. I give a heavy thanks to any libraries that are used. This website is a Jamstack website built using Gatsby and Ghost on Heroku. For people interested for making their own Jamstack using Ghost, feel free to check o]]></description><link>https://www.chazkondo.com/ck-source-code-now-available/</link><guid isPermaLink="false">Ghost__Post__60ef3e1f238632001ebca45b</guid><dc:creator><![CDATA[Chaz Kondo]]></dc:creator><pubDate>Wed, 14 Jul 2021 19:46:09 GMT</pubDate><media:content url="https://res-1.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/Screen-Shot-2021-07-14-at-9.42.00-AM.png" medium="image"/><content:encoded><![CDATA[<figure class="kg-card kg-bookmark-card"><a class="kg-bookmark-container" href="https://github.com/chazkondo/chazkondo-website"><div class="kg-bookmark-content"><div class="kg-bookmark-title">chazkondo/chazkondo-website</div><div class="kg-bookmark-description">My personal website made for fun and to showcase random updates - chazkondo/chazkondo-website</div><div class="kg-bookmark-metadata"><img class="kg-bookmark-icon" src="https://github.githubassets.com/favicons/favicon.svg" alt="CK Source Code Now Available"><span class="kg-bookmark-author">chazkondo</span><span class="kg-bookmark-publisher">GitHub</span></img></div></div><div class="kg-bookmark-thumbnail"><img src="https://opengraph.githubassets.com/5063a146d4cc0e3624cfa2cc24fdd293f135b91814e64cf6b8f880ae75faeb9d/chazkondo/chazkondo-website" alt="CK Source Code Now Available"/></div></a></figure><img src="https://res-1.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/Screen-Shot-2021-07-14-at-9.42.00-AM.png" alt="CK Source Code Now Available"/><p>For those who are interested. <br><br>I have released my messy code that needs to be drastically cleaned. I give a heavy thanks to any libraries that are used.<br><br>This website is a Jamstack website built using Gatsby and Ghost on Heroku.<br><br>For people interested for making their own Jamstack using Ghost, feel free to check out the repo and see the resources I referenced while building.</br></br></br></br></br></br></p>]]></content:encoded></item><item><title><![CDATA[Software Engineer Code of Ethics]]></title><description><![CDATA[Just wanted to do a quick link to the software engineer code of ethics. Software engineering has been an industry that has tried to become a standardized certified industry, but it is one of the most chaotic industries that exist. Like the Crypto-world, the tech industry has always kept itself anonymous for obvious reasons. It seems to me that the world will eventually have to adopt wide-spread standards for this industry as more and more technology is entangled with our actual state of life. ]]></description><link>https://www.chazkondo.com/software-engineer-code-of-ethics/</link><guid isPermaLink="false">Ghost__Post__60d25ed670704e001e0fd395</guid><dc:creator><![CDATA[Chaz Kondo]]></dc:creator><pubDate>Tue, 22 Jun 2021 22:23:17 GMT</pubDate><media:content url="https://res-3.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/Screen-Shot-2021-06-22-at-12.06.37-PM.png" medium="image"/><content:encoded><![CDATA[<img src="https://res-3.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/Screen-Shot-2021-06-22-at-12.06.37-PM.png" alt="Software Engineer Code of Ethics"/><p>Just wanted to do a quick link to the software engineer code of ethics. </p><p>Software engineering has been an industry that has tried to become a standardized certified industry, but it is one of the most chaotic industries that exist. Like the Crypto-world, the tech industry has always kept itself anonymous for obvious reasons. It seems to me that the world will eventually have to adopt wide-spread standards for this industry as more and more technology is entangled with our actual state of life. <br><br>Because of this, I just wanted to post a link to the software engineer code of ethics as a reminder to myself that there are some fundamentally important traits to the continual evolution of the digital world, and we have to slowly grow out of the toxicity of staying anonymous, similar to the physical world. Though this may not be completely possible, there has been heavy regulation threatening ISPs in the recent past anyway! The only real freedom from oppression might <em>only</em> be achieveable through the blockchain. We are in a world where governement agenda outweighs the concept of free-thinking. People are malnourished mentally, emotionally, and are more disconnected than ever in an ironically connected digital world. Enough with service providers feeding us clickbait on a daily basis!<br><br>My belief is that it is up to this generation to create an equal world, united under transparency, to free us from the capitalist and otherwise mind-controlling government corruptness, and lead us into the next phase of an enlightened tech dominated world. <br><br><a href="https://www.researchgate.net/publication/278417404_Software_Engineering_Code_of_Ethics_and_Professional_Practice">Code of Ethics</a></br></br></br></br></br></br></p>]]></content:encoded></item><item><title><![CDATA[What I learned while pursuing my Security+ Certification (and the concepts that tripped me up)]]></title><description><![CDATA[ In October of 2020, while continuing my job search, a recruiter had mentioned to me that it might be beneficial to obtain a CompTIA certificate. It was clearly recommended that I should go for the A+, Network+, and then the Security+. However, I chose to go straight for the Security+ as it was suggested that it was the certificate that could open doors sooner. So I gave myself about a month, scheduled my test, and began studying. As someone who has been working with software, gone through f]]></description><link>https://www.chazkondo.com/what-i-learned-while-pursuing-my-security-certification/</link><guid isPermaLink="false">Ghost__Post__5fc6ff57ef0a94001e1dfe69</guid><dc:creator><![CDATA[Chaz Kondo]]></dc:creator><pubDate>Wed, 02 Dec 2020 06:15:23 GMT</pubDate><media:content url="https://res-1.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/CompTIA-Security-Logo.png" medium="image"/><content:encoded><![CDATA[<img src="https://res-1.cloudinary.com/hvyrzdeu8/image/upload/q_auto/v1/ghost-blog-images/CompTIA-Security-Logo.png" alt="What I learned while pursuing my Security+ Certification (and the concepts that tripped me up)"/><p/><p>In October of 2020, while continuing my job search, a recruiter had mentioned to me that it might be beneficial to obtain a CompTIA certificate. </p><p>It was clearly recommended that I should go for the A+, Network+, and then the Security+. However, I chose to go straight for the Security+ as it was suggested that it was <em>the</em> certificate that could open doors sooner. So I gave myself about a month, scheduled my test, and began studying.</p><p>As someone who has been working with software, gone through full stack development, built computers, and have been fiddling with all aspects of computing since I was 7, I was surprised with all the things I <em>didn't know</em> that I <em>didn't know</em> (🙄 <em>I know</em>, contrived). </p><p>For example, the differences between an AP, router, and switch really opened my eyes. I learned for the first time what a DMZ was, and about command line tools that can sniff your packets.. 😐. And it may be useful to know that a script kiddie isn't necessarily a kid. Keep in mind that this version of the test will soon be expiring, and the new 601 content will be the only test-option sometime next year. So most of the content of the article will be obsolete, but don't worry, there will still be a billion acronyms to confuse the heck out of you. </p><p>The test breaks down like this: <br><br> 1.0 Threats, Attacks and Vulnerabilities<br> 2.0 Technologies and Tools<br> 3.0 Architecture and Design<br> 4.0 Identity and Access Management<br> 5.0 Risk Management<br> 6.0 Cryptography and PKI</br></br></br></br></br></br></br></p><p>So in no particular order, these are some of the things I was definitely tripping up on while taking practice tests:</p><ul><li>Cross site scripting vs. Cross site forgery requests</li><li>Zero day vulnerability (since bugs can be known to developers prior to launch, this can be a tricky question even though it shouldn't be)</li><li>Pass the hash attacks</li><li>ARP poisoning</li><li>VPN concentrators</li><li>SIEM event deduplication & WORM</li><li>SATCOM</li><li>ANT</li><li>VDI</li><li>All the protocols</li><li>Kiosks</li><li>When to use different security tools</li><li>PaaS and IaaS (as a developer, I don't know why these kept confusing me)</li><li>LDAP, Kerberos, and TACACS+</li><li>RADIUS</li><li>Shibboleth</li><li>Agreement Types</li><li>Shredding vs Pulping vs Pulverizing vs Degaussing vs Purging (wtf. apparently you can shred a hdd, but purging is the overall term for destroying? I still... wat)</li><li>Memorizing all the cryptography (hashing algorithms and traits vs block cyphers, etc.)</li><li>EAP, PEAP, WEAP, KEAP, SEAP (okay those last three aren't there, but you get the idea)</li></ul><p>That's most of the things that I needed to review over and over for it stick. In the end, as long as you know the concepts and practice with <a href="https://www.professormesser.com/sy0-501-security-plus-success-bundle/">practice tests</a>, you should be good. (Professor Messer's content is just great <3) </p><p>While I'm still waiting to see if having this certificate really makes a difference for me personally, I did really enjoy learning the content. <br><br>Method: I studied for 3 weeks, about 5-6 hours a day.</br></br></p><p>Tools: <br>- Professor Messer's notes and practice tests<br>- Darril Gibson's book</br></br></p><p>What's next? <br>... Maybe the CCNA for fun :3</br></p>]]></content:encoded></item><item><title><![CDATA[Data schema]]></title><description><![CDATA[This is a data schema stub for Gatsby.js and is not used. It must exist for builds to function]]></description><link>https://demo.ghost.io/data-schema-page/</link><guid isPermaLink="false">Ghost__Post__5bbafb3cb7ec4135e42fce56</guid><category><![CDATA[Data schema primary]]></category><dc:creator><![CDATA[Data Schema Author]]></dc:creator><pubDate>Tue, 04 Dec 2018 13:59:14 GMT</pubDate><media:content url="https://images.unsplash.com/photo-1532630571098-79a3d222b00d?ixlib=rb-0.3.5&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=1080&fit=max&ixid=eyJhcHBfaWQiOjExNzczfQ&s=a88235003c40468403f936719134519d" medium="image"/><content:encoded><![CDATA[<img src="https://images.unsplash.com/photo-1532630571098-79a3d222b00d?ixlib=rb-0.3.5&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=1080&fit=max&ixid=eyJhcHBfaWQiOjExNzczfQ&s=a88235003c40468403f936719134519d" alt="Data schema"/><p>This is a data schema stub for Gatsby.js and is not used. It must exist for builds to function</p>]]></content:encoded></item></channel></rss>