Security Onion (https://github.com/Security-Onion-Solutions/securityonion) is a great system, I love it, but starting with V2 I really had problems installing it on my test systems at home. I spent hours, many hours. No, I don’t have a data center at home, and yes, I’m fine testing it with WiFi and not having a monitoring interface. And no, I don’t understand why SO went this road to make it hard to impossible to test it this way. So to set up a …
This is a little blog post describing my home network setup and the thoughts and principles behind it. I hope it may be of use to somebody having similar goals. Design Decisions General affordable should scale well for a private LAN trade-off between security and usability extendable should offer places to learn “Women acceptance Factor ready” aka should simply work Technical Network Securiy Monitoring: offer a way to sniff all traffic to uplink provider (except directly connected devices to uplink …
Some pentesting live CDs have been updated recently or will be shortly. Time for an overview.
Disclaimer:
Preface This is an English summary of the German paper "Betrieb und Sicherheit von ownCloud" (V1.0 2015-06-16) of "Bundesamt für Sicherheit in der Informationstechnik" (Federal Office for Information Security Germany) available for download here. Please note that this English translation is my own (so all errors and language issues in this post are also my own 😉 ) and that I have the approval of writing this summary by BSI (2015-06-22). The content of some external references to the BSI …
Eine Kursbuchkarte (Bahnbus) aus dem Jahr 1953 hat den Weg zu mir gefunden. Um sie zu erhalten und besser einsehen zu können, habe ich sie in kleinen Kacheln eingescannt und dann zusammen “gestitcht”. Das Ergebnis findet sich hier (freigegeben nur zur nichtkommerziellen, privaten Nutzung!): Anmerkung: Die Feindatei (Klick auf das Bild) ist ca. 6 MB groß. Sehr schön sieht man m.E., wie “weit” die Elektrifizierung zur damaligen Zeit vorangeschritten war. Vielen Dank an die Deutsche Bahn, die mir die Veröffentlichung …
This is my personal scratch pad with information I had to research to get ESXi 5.5 to work for me. Installation ESXi 5.5 / Win 7 Dual Boot I decided that it would be handy to have ESXi running on my box … So basically this is what I did (disclaimer: if you break your stuff you're alone – don't blame me!): important: have one physical disk dedicated for ESXi moved data from a spare drive to other drives to …
A little grep'ing through logs reveal the following scan patterns (red: October): Source IPs: 146.71.113.194 188.138.33.11 192.210.219.20 192.227.213.66 198.20.69.74 207.240.10.33 209.126.230.72 37.59.196.199 46.105.14.134 54.251.83.67 64.15.147.111 64.251.176.240 84.200.228.109 89.207.135.125 Page Requests: GET /admin.cgi HTTP/1.1 GET //cgi-bin/bash HTTP/1.0 GET /cgi-bin/bash HTTP/1.0 GET /cgi-bin/hello HTTP/1.1 GET /cgi-bin/helpme HTTP/1.0 GET /cgi-bin/info.sh HTTP/1.0 GET /cgi-bin/php5-cli? HTTP/1.1 GET /cgi-bin/php5? HTTP/1.1 GET /cgi-bin/php.fcgi HTTP/1.0 GET /cgi-bin/php? HTTP/1.1 GET /cgi-bin-sdb/printenv HTTP/1.1 GET /cgi-bin/test-cgi HTTP/1.1 GET /cgi-bin/test.cgi HTTP/1.1 GET /cgi-bin/test.sh HTTP/1.0 GET /cgi-mod/index.cgi HTTP/1.1 GET /cgi-sys/defaultwebpage.cgi HTTP/1.0 GET /cgi-sys/defaultwebpage.cgi …
I've added a new RSS feeds for external news and blog posts I personally consider worth reading You should be able to add it to any RSS feed reader. https://www.thierfreund.de/newsfeed/ If you like it, drop me a line.
You can only find this funny if you attend conf calls in real life … but then it's hard to spot the difference to the last call you attended 😉 http://www.youtube.com/watch?v=DYu_bGbZiiQ
Finally: the new version of SIFT has been released. http://digital-forensics.sans.org/blog/2014/03/23/sans-sift-3-0-virtual-machine-released