Do you remember the good old times? When I put my hands on my first firewall (somewhere around 1997-1998 – wow, time flies!), it was to kick out all the bad guys playing on the Internet. And, at this epoch, not all firewalls had a default last-resort rule like “Any
Category: Security
Tracking your Github Security Events
A few days ago, I wrote a blog post about a Python script that I use with the new Amazon CloudTrail feature to grab logs from my Amazon cloud services. Because we use more and more cloud services in our digital life, the same principle should apply to all our
Keep an Eye on Your Amazon Cloud with OSSEC
The Amazon conference “re:Invent” is taking place in Las Vegas at the moment. For a while, I’m using the Amazon cloud services (EC2) mainly to run lab and research systems. Amongst the multiple announcements they already made during the conference, one of them caught my attention: “CloudTrail“. Everything has already
Hack.lu 2013 Wrap-Up Day #3
This is already the last day! We started again at 08:30 with a talk about IP cameras: “Do you know who’s watching you? An in-depth examination of IP cameras attack surface” by Francisco Falcon & Nahuel Riva. This isn’t the first time that IP cameras are used as targets for
Hack.lu 2013 Wrap-Up Day #2
And we are back for the 2nd wrap-up already! Today, we had a very bad weather (it rained all night long) but we had interesting (and complex) talks! The first one was presented by Inbar Raz who talked about “Physical (in)security – It’s not – all – about Cyber“. Inbar
Hack.lu 2013 Wrap-Up Day #1
Here is the first wrap-up of hack.lu 2013 edition (I’m wearing today the t-shirt from 2008, this is already my sixth edition). As usual, the event started with a bunch of workshops. I attended the one presented by Matt and Kacper Why about Scapy. I did not event a deep
ownCloud and VirusTotal Integration
For a few days, I switched from DropBox to ownCloud and I’m now playing more with the available ‘apps‘. Besides the privacy context, ownCloud seduced me with its add-on feature. Is it possible to install external plug-ins (called ‘apps‘) to add new or improve native features. Of course, downloading and
How Shared Hosting Can Affect Your Reputation?
A quick blog post about the risks associated with shared hosting solutions. Today it’s very easy to rent some space on the intertubes. They are tons of companies which give you some gibabytes of storage and bandwidth for a few bucks per month. It’s easy as 1-2-3, even Granny is
Goodbye Dropbox!
There is one fact with humans: once they took some habits (in this case – bad habits), it’s very difficult to ask them change their behavior! It’s even true in information security. Today, we have access to plenty of awesome online applications which help us in our day-to-day activities. Thank
October 2013 OWASP Belgium Chapter Meeting Wrap-UP
I’m just back from the first OWASP Belgium Chapter meeting since the holidays are over. This was already the third event in 2013. The next event will be scheduled in December. This time, two great speakers were present. The first one was Giorgio Maone who presented “NoScript for Developers“. Giorgio is the author