Home
About me
Contact
Resume
Disclaimer
Toolbox
Calendar

/dev/random

I've forgotten your password again, could you remind me?

ISSA Belgium Chapter Meeting: Introduction to OSSEC

Back from the first ISSA Belgium Chapter Meeting of 2010. Today’s topic was “Introduction to OSSEC : Log Analysis and Host Intrusion Detection“. A very interesting topic for me. First because I’m involved in lot of SIEM projects. But especially because Wim Remes, the speaker, is a friend of mine.
Wim is a fan of OSSEC. [...]

January 21st, 2010 | Tags: Belgium, Event, ISSA, Log, OSSEC, SIEM, Software | Category: Event, Security, Software | One comment

Bash Syslog History Could Lead to Data Leakage?

A few months ago, I posted an article about how to add extra logging facilities to the Bash shell. For specific users, it can be useful to have a complete history of their activity on your server (for audit purposes). The first release candidate of Bash 4.1 is available for a few days. Good surprise, [...]

December 28th, 2009 | Tags: Bash, leak, Log, Syslog, Unix | Category: Security, Software | Leave a comment

You’ve a SIEM? And Now?

“Log Management”, “SIEM”, “Correlation”, “Incident Management”, more and more organizations have a SIEM project in the pipe. SIEM means “Security Incident & Event Management“. Just to remind you, a SIEM is a set of tools which helps to collect and analyze logs from several sources on a corporate network. Basic functions of a SIEM are:

Event [...]

November 15th, 2009 | Tags: Business, Log, SIEM | Category: Business, Security | Leave a comment

Upcoming Events

March 16, 2010
- SecureCloud 2010
  SecureCloud 2010
  SecureCloud 2010 is a premier educational and networking event hosted by the European Network and Information Security Agency, the Cloud Security Alliance and ISACA, three of the leading organizations shaping the future of Cloud Computing Security. It is the first event to focus specifically on state of the art practices to promote security, privacy and trust within cloud computing from technical, assurance and governance perspectives. This event is a unique opportunity not only to learn, but ... all day
March 17, 2010
- SecureCloud 2010
  SecureCloud 2010
  SecureCloud 2010 is a premier educational and networking event hosted by the European Network and Information Security Agency, the Cloud Security Alliance and ISACA, three of the leading organizations shaping the future of Cloud Computing Security. It is the first event to focus specifically on state of the art practices to promote security, privacy and trust within cloud computing from technical, assurance and governance perspectives. This event is a unique opportunity not only to learn, but ... all day
March 18, 2010
- Rooted CON 2010
  Rooted CON 2010
  The Rooted CON organization brings together a group of professionals with over 10 years of experience in the field of ICT security, and renowned experts, winners or finalists in national and international hacking challenges, forensics and reverse engineers, as well as usual speakers of other security conferences. all day
March 19, 2010
- Rooted CON 2010
  Rooted CON 2010
  The Rooted CON organization brings together a group of professionals with over 10 years of experience in the field of ICT security, and renowned experts, winners or finalists in national and international hacking challenges, forensics and reverse engineers, as well as usual speakers of other security conferences. all day
March 20, 2010
- Rooted CON 2010
  Rooted CON 2010
  The Rooted CON organization brings together a group of professionals with over 10 years of experience in the field of ICT security, and renowned experts, winners or finalists in national and international hacking challenges, forensics and reverse engineers, as well as usual speakers of other security conferences. all day
March 24, 2010
- InfoSecurity Belgium 2010
  InfoSecurity Belgium 2010
  Infosecurity.be offers ICT professionals an overview of the latest security technologies, products and services. More than 80 exhibitors guarantee a wide exhibition programme. The keynote sessions, comprehensive seminar programme and other activities at the show also offer a great deal of inspiration for all your security issues. all day
March 25, 2010
- InfoSecurity Belgium 2010
  InfoSecurity Belgium 2010
  Infosecurity.be offers ICT professionals an overview of the latest security technologies, products and services. More than 80 exhibitors guarantee a wide exhibition programme. The keynote sessions, comprehensive seminar programme and other activities at the show also offer a great deal of inspiration for all your security issues. all day

Security Focus

Vuln: Apache 'mod_isapi' Memory Corruption Vulnerability
Vuln: Samba 'CAP_DAC_OVERRIDE' File Permissions Security Bypass Vulnerability
Vuln: Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
Vuln: Pidgin Multiple Denial of Service Vulnerabilities
Bugtraq: [USN-908-1] Apache vulnerabilities

/dev/random

ISSA Belgium Chapter Meeting: Introduction to OSSEC

Bash Syslog History Could Lead to Data Leakage?

You’ve a SIEM? And Now?

Recent Posts

Upcoming Events

Archives

Categories

Meta

Security Focus