Black Hat Europe 2012 is close to us! And for me, even closer: After two years in Barcelona, the well-known security conference will come back to Amsterdam! New location but also a new format: The organizers decided to switch from a 2×2 days event (two days of trainings and two
Tag: Security
There is no Place for a Kindergarten in Security
If you have children, you have for sure already faced the following situation just after they messed up. Oh, the joy of seeing them denouncing and pointing at each other with classic expressions like “It’s not me, it’s him!“. Of course, you did not see what happened and children do
Get The Most of Your Monitoring/Security Tools!
The idea of this article popped in my mind after a colleague of mine asked me to investigate a security incident. Nothing brand new, a customer’s server not properly patched and secured was pwned. I found that the server was hit by the JBoss worm which started to spread in
First 2012 OWASP Belgium Chapter Meeting Wrap-Up
A new year started and why change good habits? I’m just back from the first OWASP Belgium Chapter meeting of 2012. Here is my quick wrap-up. The organization remains the same, the first few minutes were dedicated to some news from the OWASP organization given by Seba. A survey was
Monitoring pastebin.com within your SIEM
For those who (still) don’t know pastebin.com, it’s a website mainly for developers. Its purpose is very simple: You can “paste” text on the website to share it with other developers, friends, etc. You paste it, optionally define an expiration date, if it’s public or private data and your are
Show me your SSID’s, I’ll Tell Who You Are!
The idea of this article came from a colleague of mine. He wrote a first version of the script described below. I found it very useful and asked his permission to re-use it and to write this blog article. Thanks to him! In the mean time, during my researches, I
Everything Can Be Outsourced But Not Your Responsibility!
Today almost all organizations outsource some of their IT projects to third party partners. Due to the ever changing landscape in information technology, it is virtually impossible for an organization to have internal knowledge in all domains of technology. The web presence is maybe one of the most domain where
And I Thought to be Protected!
The security market is constantly changing! A few years ago, there was the “UTM” (“Unified Threat Management“) market which offered to customers all-in-one solutions (firewall, anti-virus, IDS, VPN, load-balancing, etc). Some of them were close to make coffee! Then, the “Next Generation” wave started. On top of it, all those
rrhunter: Detecting Rogue IPv6 Routers
It’s a fact: Pv6 deployments are on the raise. We are close to the end of 2011 and this year was really some kind of a kick-off year to deploy the new protocol or to make live tests. I won’t come back on all the new features implemented in the
OWASP Benelux Days 2011 Wrap Up
The OWASP Benelux Days is a two-days event organized by three OWASP chapters (Belgium, Netherlands and Luxembourg). The 2010 edition was organized in Eindhoven(NL). This year, it was organized in Luxembourg. After a safe trip, sharing my car with a friend, we arrived at the Luxembourg University. Nice venue with