blog


Topic Replies Activity
Small security improvements - zero trust, zero budget, zero time, countless risks 1 May 18, 2019
Advanced Fuzzing & Crash Analysis (HITB 3-day training, May '19) - personal revue 1 May 9, 2019
Getting your favorite Windows laptop ready for a security con - no bullshit guide 1 April 12, 2019
Quick-tip: coding with IDE-features and focus - Eclim and NeoVim 1 October 17, 2018
Go and data-frames - JSON reading without mapping - get ready to machine-learn 1 August 26, 2018
Quick-tip: switch to Java 8 SDK on Mac OS X (2018) 1 August 7, 2018
The Cynefin framework to overlay formative security management approaches 1 July 11, 2018
The Zero-Trust proxy hype - can we reverse-proxify everything and ditch VPNs? 1 June 15, 2018
A look at algo VPN and pfSense NAT - beyond double-NAT and fragmentation 1 June 14, 2018
Inspec with Jenkins, Ansible and Splunk for compliance dashboards - self-auditing CI platforms 1 May 24, 2018
Don't panic because you have a blog - GDPR is simple enough 1 May 23, 2018
Minikube on Mac OS X with VMware Fusion for local development - and a not so local future 1 April 6, 2018
Use Cloudflare DNS with TLS on Mac OS X - GUI and CLI-way 1 April 2, 2018
Drupal - DrupalRequestSanitizer fixes pre-auth remote code exec bug (SA-CORE-2018-002 / CVE-2018-7600) 1 March 30, 2018
Let your Mac phone home via SSH and launchd 1 March 9, 2018
MicroService architecture can haz HIDS - dig into sysdig 1 March 7, 2018
PCI DSS - let's be pragmatic about JavaScript Client Side Encryption and SAQs 1 February 21, 2018
Linux Without Borders, Edition 1 (Nov 2017): network-ergonomics and cloud-mounts for the impatient 1 November 13, 2017
Program Analysis with Satisfiability Modulo Theories (SMT) Solvers for Bug Hunters - Part 1 1 November 8, 2017
Darktrace - Machine Learning Network Intrusion Detection System 1 November 3, 2017
GDPR FAQs - from DPIA (Article 25) to Data Mapping (Article 30, 32) 1 September 7, 2017
PWNplug - onsite Pen(-)tests, Reverse Shells, and Network Access Control 1 July 6, 2017
How did you cultivate information security at your company - or why certification isn't about applicants 1 June 22, 2017
SSH Multi Factor Authentication with Google Authenticator from external networks 1 June 21, 2017
iSCSI, LUNs, arrays - OpenSource storage with Linux and tgt 1 April 28, 2017
Use FreeTDS on Linux and Python for Lansweeper Asset Management queries 1 April 5, 2017
Did you ever use the word "crypto-compliance" for PCI DSS? Maybe you should 1 March 28, 2017
The role of risk assessments and evaluation of evidence in Incident Response 1 February 26, 2017
Install suricata 3 on Gentoo via Portage with an external libhtp 1 February 14, 2017
Malware Analysis - basic code analysis with BinNavi 1 February 10, 2017