blog.rootshell.be
Security Archives - /dev/random
https://blog.rootshell.be/tag/security
If the enemy leaves a door open, you must rush in. – Sun Tzu. SANS ISC Diary] Data Classification For the Masses. August 19, 2016. SANS Internet Storm Center. Continue reading ». SANS ISC Diary] The Power of Web Shells. July 14, 2016. SANS Internet Storm Center. Continue reading ». RMLL Security Track 2016 Wrap-Up. July 4, 2016. I’m in the train from Paris where I attended the RMLL Security Track version 2016. The RMLL or “Rencontres Mondiales du Logiciel Libre” is an annual event a...June 30, 2016.
blog.rootshell.be
Introduction to Nmap Scripting - /dev/random
https://blog.rootshell.be/2009/02/02/introduction-to-nmap-scripting
If the enemy leaves a door open, you must rush in. – Sun Tzu. Introduction to Nmap Scripting. February 2, 2009. All people working with networks know the wonderful tool called Nmap. Basically, Nmap is a network scanner. It allows you to detect hosts on a network and services running on them. Just type “nmap hostname ip ” to perform a simple port scan. But Nmap can do much more! O (OS detection – fingerprinting). For a detailed list of options, check out the online documentation. The NSE (“. Basically, a ...
blog.rootshell.be
SSL Archives - /dev/random
https://blog.rootshell.be/tag/ssl
If the enemy leaves a door open, you must rush in. – Sun Tzu. Tracking SSL Issues with the SSL Labs API. May 18, 2015. The SSL and TLS protocols have been on the front of the stage for months. Besides many vulnerabilities disclosed in the OpenSSL library, the deployment of SSL and TLS is not always easy. They are weak cyphers (like RC4), weak signatures, certificates issues (self-signed, expiration or fake ones). Other useful features are mis-understood. Continue reading ». Heartbleed Impact in Belgium?
blog.rootshell.be
PGP Public Key - /dev/random
https://blog.rootshell.be/pgp-public-key
If the enemy leaves a door open, you must rush in. – Sun Tzu. If you want to exchange information in a safe way with me, feel free to use my PGP public key. BEGIN PGP PUBLIC KEY BLOCK- - - Version: GnuPG v1.2.2 (OpenBSD) mQGiBEEo3RURBACTRC7vtG0sCSy/75bkMAPEeUw0Wa15rPWEBEm1iyDwTZ0c6Hd/ Oyzre8ZZNnyXkAcACP6kH2NX FonnCHZEhbZJINJzLqlHzPjynRm7rtyW6rL Fiw BGF29n J O8FNUk6PQCLMk6 DSzeKE7NJqdEf K9u6EO1xiqR1pfm3fwzwCg6io/ ZUMmxkpkUJv5cILPEaIoBCkD/08jJfMWBrruxsTvgHalVW7GoUvc87cjId3WxLQ3 JIcjcRHZi4n4CqQTQCNS...Check...
blog.rootshell.be
Security Archives - /dev/random
https://blog.rootshell.be/category/security
If the enemy leaves a door open, you must rush in. – Sun Tzu. SANS ISC Diary] Data Classification For the Masses. August 19, 2016. SANS Internet Storm Center. Continue reading ». SANS ISC Diary] Analyze of a Linux botnet client source code. July 27, 2016. SANS Internet Storm Center. Continue reading ». SANS ISC Diary] Name All the Things! July 15, 2016. SANS Internet Storm Center. I published the following diary on isc.sans.org: “Name All the Things! 8220; With our more and more complex environments and ...
blog.rootshell.be
Tracking SSL Issues with the SSL Labs API - /dev/random
https://blog.rootshell.be/2015/05/18/tracking-ssl-issues-with-the-ssl-labs-api
If the enemy leaves a door open, you must rush in. – Sun Tzu. Tracking SSL Issues with the SSL Labs API. May 18, 2015. The SSL and TLS protocols have been on the front of the stage for months. Besides many vulnerabilities disclosed in the OpenSSL. Library, the deployment of SSL and TLS is not always easy. They are weak cyphers (like RC4), weak signatures, certificates issues (self-signed, expiration or fake ones). Other useful features are mis-understood and not often not configured like PFS. The grade (...
2014.brucon.org
BruCON 2014
http://2014.brucon.org/index.php/One_packer_to_rule_them_all:_Empirical_identification,_comparison_and_circumvention_of_current_Antivirus_detection_techniques
BruCON spring training will be held on 22-24 April 2015 at the Novotel Ghent. BruCON trainings will be on 5-7 October, the conference on 8-9 October 2015. Stay in touch BruCON mail list: subscribe form. We promise to keep the spam level low :-). You can see the videos of 2014 online on our YouTube channel. 3 reasons to book your BruCON training now! August 19, 2014 19:54). Facebook Capture The Flag event @ BruCON 2014 - registration open. August 05, 2014 07:37). May 08, 2014 12:10). April 07, 2014 17:59).
blog.rootshell.be
Deobfuscating Malicious VBA Macro with a Few Lines of Python - /dev/random
https://blog.rootshell.be/2015/05/08/deobfuscating-malicious-vba-macro-with-a-few-lines-of-python
If the enemy leaves a door open, you must rush in. – Sun Tzu. Deobfuscating Malicious VBA Macro with a Few Lines of Python. May 8, 2015. Just a quick post about a problem that security analysts are facing daily… For a while, malicious Office documents are delivered with OLE objects containing VBA macros. Bad guys are always using obfuscation techniques to make the analysis more difficult and (try to) bypass basic filters. This makes the analysis not impossible but boring and time consuming. May 18, 2015.
2014.brucon.org
BruCON 2014
http://2014.brucon.org/index.php/BruCON_2014:General_disclaimer
BruCON spring training will be held on 22-24 April 2015 at the Novotel Ghent. BruCON trainings will be on 5-7 October, the conference on 8-9 October 2015. Stay in touch BruCON mail list: subscribe form. We promise to keep the spam level low :-). You can see the videos of 2014 online on our YouTube channel. 3 reasons to book your BruCON training now! August 19, 2014 19:54). Facebook Capture The Flag event @ BruCON 2014 - registration open. August 05, 2014 07:37). May 08, 2014 12:10). April 07, 2014 17:59).
blog.rootshell.be
What Are You Sharing with Dropbox? - /dev/random
https://blog.rootshell.be/2012/05/19/what-are-you-sharing-with-dropbox
If the enemy leaves a door open, you must rush in. – Sun Tzu. What Are You Sharing with Dropbox? May 19, 2012. Is a well-known online service which allows you to share files between computers. If, in the past few months, new outsiders came on the same market, Dropbox remains the number one. If files are synchronized between Dropbox software clients, they also provide features to share files with third-party who don’t have a Dropbox account. How? By creating “. Dropbox - Get Link. Search across multiple T...
SOCIAL ENGAGEMENT