The second day is over! Here is my wrap-up. After some doses of caffeine, the day started with the “Red Team Testing” workshop by Chris Nickerson (@indi303). He explained a methodology to conduct penetration tests. Good examples are the ones of the Tiger Team. The goal is to revamp the
Tag: Security
Hack.lu Day #1 Wrap-up
We are already in November, fall is back! This is also the sign of the new edition of hack.lu, a classic security conference organized in Luxembourg. The first day started with workshops. I attended the crypto analysis workshop prepared by Eric Filiol, an expert in this domain. Cryptography is certainly
Implementing Active Lists in OSSEC
The second OSSEC week just ended. Here is a reflection about a feature that does not exist (yet?) in OSSEC. The goal of a SIEM (“Security Incidents and Events Management“) is to collect logs from multiple non-heterogeneous sources and process them to add some extra value to the events. To
This Blog is Monitored by OSSEC
As part of the second edition of the OSSEC week, I’d like to give some information about my daily usage of OSSEC. This week is an initiative from Michael Starks of Immutable Security and aim to promote OSSEC to the security community. I’m fully supporting such great initiatives. What about
Protect Your Applications Using EMET
Is there a way to make your Windows environment certainly not bullet-proof but stronger enough against attacks? A few weeks ago, Microsoft released an interesting add-on called EMET for its Windows operating systems range. EMET stands for “Enhanced Mitigation Experience Toolkit” and is designed to increase the security of your
Wall Of Shame: Pros & Cons
A “Wall of Shame” or “Wall of Sheep” is a real-time demonstration application which searches for non secured (read: sent in clear text) login/passwords sent through a network. One of the well-know wall of sheep is the one operated every year during the Defcon conference in Las Vegas. A few
BruCON 2010 Wrap-Up
BruCON is already over! Two exciting days spent with most of the top security speakers coming from several continents. I usually write a quick review of the presentations I followed during a security conferences but BruCON is something different: I’m behind the stage. Like last year, I gave some of
SOURCE Barcelona Day #2 Wrap-Up
The second day of SOURCE Barcelona is already over. I’m at the airport waiting for my early flight and crossing my fingers due to the announced French air controllers strike. BruCON is now at our doors and we need to build everything tonight. What about the second day? Well, it
SOURCE Barcelona Day #1 Wrap-Up
This week promises to be a busy one. I woke up early to catch my plane to Barcelona! The flight was delayed due to a strike in France but I arrived not too late and just missed the keynote. Barcelona is a very beautiful city and the place where is
Is the SIEM Landscape Changing?
If you follow the IT news feeds, you probably learned today that HP bought ArcSight for $1.5 billions. ArcSight is not a known public name but is a leader on the SIEM (“Security Information & Event Management“) market. This announce already generated lot of comments, positive as negative. Log management,