CdC Goolag
Posted: February 23rd, 2008Cult Of The Dead Cow’s Goolag. Too tired to read it at the moment.
Deconstructing Xbox 360 Security
Posted: January 1st, 2008Almost one year ago I blogged Deconstructing Xbox Security, this year there’s Deconstructing Xbox 360 Security (24c3-2279-en-deconstructing_xbox_360_security.mkv) presented at 24C3. Link to 24C3 video recordings.
Links 05-11-2007
Posted: November 6th, 2007Top 15 free SQL Injection Scanners
Twitter Guide Part #5 – Twitter Tools | Web Applications
JanusVM – Internet Privacy Appliance
Top 10 Reasons Websites Get Haked
Posted: October 18th, 2007Top 10 Reasons Websites Get Hacked (2007) by OWASP via Zone-H/Full Disclosure.
A Defcon (or public wi-fi) survival guide
Posted: September 16th, 2007The Register has this article entitled “A Defcon survival guide” which contains a list of measures you should consider taking when using public Wi-Fi.
EDIT: Yes I know this is more than a month and a half old – it has been one of my open tabs in firefox (which works as a sort of to read/to blog list) for that long.
The Weakest Link
Posted: March 26th, 2007You all know the saying and how Windows is always on top of it. Granted this isn’t nor as it ever been what I’d call a big deal but it’s funny how it’s never fixed. Most people I know actually LIKE to know the type of files they are dealing with and to them, changing this option is one of those little Windows tweaks that you have to do every time you install it. But hey I’m sure MS has got some good reason to make this annoying behavior the default.
Random Noise – Back from the present
Posted: March 17th, 2007After spending the past 5h30min working for my “Compilers” class project, I’ll have to take some care not to use regular expressions writing this post.
Codeplay makes autoparallelising compiler – I had no doubt this was coming.
Google: Taking steps to further improve our privacy practices – corporations taking steps to protect their customers privacy is always welcomed. Google again takes a decisive lead when it comes to online big names. I fully expect You-know-who to tell the press that he and his company believe privacy is bad and that they are taking further steps to “help protect our children”.
Gnome 2.18 is out – another incremental improvement. Step by step, PC by PC, the world will be converted to gnome.
I’ve had more than one discussion on the subject of enabling IPv6 support. My argument as always been “I don’t need it, I won’t enable it”. I’ve actually went on about how IPv4 stacks have been heavily scrutinized – specially in the post-nmap world with IPv4 packet manipulation tools being a commodity. I postulated long ago that IPv6 stacks had not been subject to such intense scrutiny and that we would see at a few DoS, a couple of remote root vulnerabilities, an amazing array of OS-specific signatures and off course a quit a few “complications” all thanks to IPv6. Check out Van Hauser of THC presentation Attacking the IPv6 protocol suite from EuSecWest 06. Now, thanks to the vulnerability research work done by Core Labs, I can go “IN YOUR FACE DUDE!” to the people that keep harassing me over IPv6.
{letter}*({ Damn!
And while we’re on the subject
Posted: March 13th, 2007Note To Self: take a look at firekeeper – project page, project weblog.
Firekeeper is an Intrusion Detection and Prevention System for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content.
Other features of Firekeeper include:* Ability to scan incoming Firefox traffic – HTTP(S) response headers, body and URL and to cancel processing of suspicious responses.
* HTTPS and compressed responses are scanned after decryption/decompression.
* Very fast pattern matching algorithm (taken directly from Snort).
* Interactive alerts that give an ability to choose a response to detected attack attempt.
* Ability to use any number of files with rules and to automatically load files from remote locations.
NoScript – before I forget… again
Posted: March 13th, 2007I’ve been meaning to make a decent post explaining why you should use the NoScript extension in firefox but I can never get around to it and end up forgetting for months at a time only to forget all about it again so I’m gonna leave here the link, say “It’s a Good Thing” and leave you to figure out why.
Here’s a nice and recent example.
Javascript is pretty powerful and with great power comes great responsibility or something like that… I’m gonna go to sleep before I say any more weird stuff.
Exam Season, AACS, FEUP Blogs
Posted: February 15th, 2007This one is almost over… it’s been… interesting. Trying hard to keep up with the news. The only thing interesting I read was the AACS stuff. Who would’ve thought after so much work they wouldn’t even bother encrypting the USB traffic?
Another recent development that I’ve been keeping up to date with is NeACM‘s FEUP Blogs. It’s been talked about in this room (D007 – Chefax/NeACM) for at least a couple of years, it was in development for 6 months and now it’s finally here. It looks really great! At the time of writing, after only a few days, it already has 100+ blogs. Insta-Success!
Windows Vista – First Impressions
Posted: January 18th, 2007From one and a half days of Vista use:
The Good:
- UAC actually looks pretty good, unfortunately I suspect many users will disable it;
- More security stuff (such as ASLR) – only time will tell how effective they will be, but it’s no doubt an improvement;
- It feels a lot more responsive;
- The WinKey+Tab is badass (though not as good as OSX’s expose);
- Search for everything (documents, programs, configuration options, …);
- It’s pretty (I really like the new progress bar in explorer).
The Bad:
- Configuring Windows with the new control panel is much harder – options are spread around like crazy;
- Networking for laptops is as bad as in XP (i.e. nowhere near as good as in Ubuntu);
- They couldn’t even ensure out-of-the-box compatibility for Visual Studio 2005 – they’ll address it in VS2k5 SP1.
Some links I cant be bothered to make a specific post for:
Online Security Sessions from TechEd IT Forum Available
Windows Vista Security Guide
Gunnar Peterson’s OS Security Features Chart
Trusted Computing
Posted: January 13th, 2007Wow this is the best explanation of why TCPA sucks – also on youtube (found it via Thierry Zoller’s blog that I was checking because of the 22C3 bluetooth stuff). It was actually fun to watch and makes it simple for every one to understand.
Additional Link: Against TCPA
23C3 Videos
Posted: January 12th, 2007Videos from some of the presentations at 23C3 are already available on google video. Enjoy.
PS: Bluetooth Hacking Revisited stuff.
Deconstructing The Xbox Security System
Posted: January 6th, 2007This Google Tech Talk kicked ass. I specially like the A20 hack and visor’s “memory is a sphere” hack.
Blink Personal Edition – Free IPS from eEye
Posted: December 9th, 2006I need to get around to booting into windows and try eEye’s free Blink Personal Edition. I’m making this blog post so I don’t forget it. Hopefully I’ll install it later tonight on the laptop and maybe update this post
The free personal version features:
- Personal Firewall (Application and System)
- Identity Theft Protection
- Protocol-Based Intrusion Prevention
- Application Protection
- Registry Protection
- Execution Protection
- Local Vulnerability Assessment