As part of the second edition of the OSSEC week, I’d like to give some information about my daily usage of OSSEC. This week is an initiative from Michael Starks of Immutable Security and aim to promote OSSEC to the security community. I’m fully supporting such great initiatives. What about
Category: Security
Protect Your Applications Using EMET
Is there a way to make your Windows environment certainly not bullet-proof but stronger enough against attacks? A few weeks ago, Microsoft released an interesting add-on called EMET for its Windows operating systems range. EMET stands for “Enhanced Mitigation Experience Toolkit” and is designed to increase the security of your
PaloAlto Firewall Threat Monitoring Using OSSEC
Usually, I don’t speak or even try to give references to commercial security products on my blog. Why? Just because, my philosophy is the following: “First analyze the problems and then choose the right solution(s)“. The proposed solution could be commercial or free, hardware or software based, who cares? If
Wall Of Shame: Pros & Cons
A “Wall of Shame” or “Wall of Sheep” is a real-time demonstration application which searches for non secured (read: sent in clear text) login/passwords sent through a network. One of the well-know wall of sheep is the one operated every year during the Defcon conference in Las Vegas. A few
BruCON 2010 Wrap-Up
BruCON is already over! Two exciting days spent with most of the top security speakers coming from several continents. I usually write a quick review of the presentations I followed during a security conferences but BruCON is something different: I’m behind the stage. Like last year, I gave some of
SOURCE Barcelona Day #2 Wrap-Up
The second day of SOURCE Barcelona is already over. I’m at the airport waiting for my early flight and crossing my fingers due to the announced French air controllers strike. BruCON is now at our doors and we need to build everything tonight. What about the second day? Well, it
SOURCE Barcelona Day #1 Wrap-Up
This week promises to be a busy one. I woke up early to catch my plane to Barcelona! The flight was delayed due to a strike in France but I arrived not too late and just missed the keynote. Barcelona is a very beautiful city and the place where is
Is the SIEM Landscape Changing?
If you follow the IT news feeds, you probably learned today that HP bought ArcSight for $1.5 billions. ArcSight is not a known public name but is a leader on the SIEM (“Security Information & Event Management“) market. This announce already generated lot of comments, positive as negative. Log management,
SOURCE Barcelona is at our Doors!
In exactly one week, I’ll fly to Barcelona to attend the SOURCE Conference. Flight and hotels are booked for a while, it’s now time to prepare to cover the event. The schedule has been published for a while with a good balance between technical and business talks. Here is my
BackTrack4-R1 + AWUS036NH = Win!
This is a long story… but it is finally solved thanks to the developers of the BackTrack distribution! For a long time, I used a good old Orinoco PCMCIA card to play around with WiFi networks. But it died and I was looking for a brand new toy. After reviewing