/dev/random

After a great first edition in 2009, BruCON will be back in 2010! Two days of trainings and two days of talks.
The Call for Papers (CFP) has been announced and will remain open until 30th of April 2010. Submit directly your propositions via the dedicated tool, here.

I’m back from my daily visit to the FOSDEM. This two-days event organized in Brussels hit the 10th edition! Congratulations! I attended FOSDEM for several years and the success is continuously growing. This is good! It means that the interest in free software is growing too! Even better, like any similar event, it is an [...]

I’m back from the last OWASP (organized together with ISSA) Belgium Chapter meeting. As usual, good times with friends from the Belgium Security landscape . Two topics were covered today. First GreenSQL, a database firewall, then an overview of the mobile malwares by Mikko Hypponen.
Almost one year to the day, I wrote a blog [...]

The 2010 edition of the Data Privacy Day will be held on the January, 28th. This initiative has a dedicated website: dataprivacyday2010.org. The goal is to create more awareness about your online privacy:
“Data Privacy Day is an international celebration of the dignity of the individual expressed through personal information. In this networked world, in [...]

Back from the first ISSA Belgium Chapter Meeting of 2010. Today’s topic was “Introduction to OSSEC : Log Analysis and Host Intrusion Detection“. A very interesting topic for me. First because I’m involved in lot of SIEM projects. But especially because Wim Remes, the speaker, is a friend of mine.
Wim is a fan of OSSEC. [...]

Back from an ISSA Belgian Chapter event about DNS & Security. As says Kris Buytaert on his blog: “Everything is a Freaking DNS problem!“.
Today’s speaker was Marc Lampo who has a great DNS experience (a long time ago, he gained several years of experience as hostmaster while working for a Belgian ISP). After reviewing the [...]

This afternoon, the OWASP Belgian Chapter organized its annual Benelux Day in Leuven. The event started round 12:30 with a great initiative: a workshop based on WebGoat.
This is an OWASP project which maintains an insecure web application (based on Tomcat) used to teach web security. The proposed lessons cover all the classic vulnerabilities found in [...]

It’s Halloween!
A security company developing antivirus solutions launched a cool propaganda related to the Halloween topic (monsters, zombies, etc): The “Kill-A-Zombie” day!
Every computer not properly protected has chances risks to become a “zombie” and be part of a botnet. Security awareness campaign are always good initiatives. What could you do to kill a zombie? Use [...]

Already the last day of the conference! I could say that hack.lu was a “festival of calc.exe” this year! They popped up from everywhere
We started with Ilja van Sprundel who talked about exploiting Delphi/Object Pascal. Applications written in Delphi are not often targets of attacks but interesting stuff can also be performed on [...]

After some coffee and croissants, the second day started with a speech of the Minister of the Economy and Foreign Trade, Jeannot Krecké. He spoke about the importance of security awareness on the Internet and IT infrastructure mentioning the Cyberworld Awareness Security Enhancement Structure (“CASES“) active in Luxembourg.
Due to family issues, Jose Nazario, working for [...]