This post describes a brief summary on this subject together with recent tests I did conduct against Citrix ADC/NetScaler in a Lab environment. This post will not show intensive testing or demonstrating offensive techniques mentioned here, though this could perhaps appear in a future post on my other blog https://offsec.vchur.dk […]
NetScaler
Allow access to web apps based on a specific time schedule with Citrix ADC (NetScaler)
Recently I was involved in a project, where one of the objectives was to restrict access to application resources handled by our Citrix ADC, based on a specific time range. So from Monday to Friday between 8-16 access should be allowed in this case, where access to the web applications […]
Site-2-Site IPSEC VPN Tunnel from Microsoft Azure to On-Premises with Citrix NetScaler
NetScaler provides the ability to extend your enterprise network to the Cloud. The NetScaler CloudBridge Connector enables you to move your applications to the cloud to reduce cost and increase reliability. In addition to using CloudBridge Connector between a datacenter and a cloud, you can use it to connect two […]
Protect your web traffic against Internet threats with Citrix NetScaler Secure Web Gateway
In this blog post I will share some of my experiences implementing NetScaler SWG as a Forward Proxy in order to protect and enhance security for your web traffic. Citrix NetScaler Secure Web Gateway addresses security challenges, by letting organizations control which applications users can access, inspecting ssl encrypted traffic, […]
Container based AppDelivery Controller – NetScaler CPX – Part 1
Purpose of this post is to share my experience with running NetScaler CPX from a Docker Image. Our objective is to implement a NetScaler CPX test/development platform as a Docker container based app. In this post we will look into installing and configuring Docker, NetScaler CPX and DVWA […]
Running NetScaler VPX in Oracle VirtualBox
Finally found it possible to use NetScaler VPX in VirtualBox. Keep in mind that running NetScaler in VirtualBox is NOT supported, use for Test purpose only. Tested with Oracle VirtualBox 5.1.25 and NetScaler VPX 11.1 + 12.0 build 51.24 How To Deploy NSVPX in VirtualBox Download NS VPX for […]
Native OTP and MFA in Citrix NetScaler 12
Finally, NetScaler 12.0 build 51.24 was released July 20 – 2017 and introduces two great new features among other things: Native OTP (OneTimePassword) via nFactor Secure Web Gateway (Will be covered in a later post) I am very excited to follow development on these two features. This post is focusing […]
Single Sign On (SSO) to ADFS enabled Website from XenMobile SecureWeb
From ADFS 3.0 on Windows Server 2012 R2, a Powershell property defines which User Agents (Browsers) that are supported for 401 Windows Integrated Authentication instead of Form Based Authentication. So In order to ensure that we can support SSO from XenMobile SecureWeb, we can change that property on ADFS (Option […]
Protect and Secure your Web Application with NetScaler Application Firewall (WAF) – Part 1
The first part of this post I am providing some information and guidelines on how to implement Citrix NetScaler Application Firewall in front of your web application. In the second part coming up, we will look into the Security Insight of NMAS (NetScaler Management and Analytics Services) how this provide […]
Optimizing SSL Security and Performance with OCSP and NetScaler
This post is about OCSP, NetScaler and SSL/TLS, how we could benefit from it and how we implement it on NetScaler. Intro Online Certificate Status Protocol (OCSP) is an alternative/replacement to the Certificate Revocation List (CRL) and is also a method to validate the status of a certificate. The CRL […]