Some pentesting live CDs have been updated recently or will be shortly. Time for an overview.
Disclaimer:
gebhard 2018-04-08 Uncategorized Forensics, Live-CD, Pentesting, Tools
Some pentesting live CDs have been updated recently or will be shortly. Time for an overview.
Disclaimer:
gebhard 2015-08-16 Uncategorized ownCloud, Security
Preface This is an English summary of the German paper "Betrieb und Sicherheit von ownCloud" (V1.0 2015-06-16) of "Bundesamt für Sicherheit in der Informationstechnik" (Federal Office for Information Security Germany) available for download here. Please note that this English translation is my own (so all errors and language issues in this post are also my […]
gebhard 2015-08-08 Uncategorized Eisenbahn, Karte, Kursbuchplan
Eine Kursbuchkarte (Bahnbus) aus dem Jahr 1953 hat den Weg zu mir gefunden. Um sie zu erhalten und besser einsehen zu können, habe ich sie in kleinen Kacheln eingescannt und dann zusammen "gestitcht". Das Ergebnis findet sich hier (freigegeben nur zur nichtkommerziellen, privaten Nutzung!): Anmerkung: Die Feindatei (Klick auf das Bild) ist 16 MB groß. […]
gebhard 2014-12-31 Uncategorized Dual Boot, ESXi, Win7
This is my personal scratch pad with information I had to research to get ESXi 5.5 to work for me. Installation ESXi 5.5 / Win 7 Dual Boot I decided that it would be handy to have ESXi running on my box … So basically this is what I did (disclaimer: if you break your […]
gebhard 2014-11-04 Uncategorized Logs, ShellShock
A little grep'ing through logs reveal the following scan patterns (red: October): Source IPs: 146.71.113.194 188.138.33.11 192.210.219.20 192.227.213.66 198.20.69.74 207.240.10.33 209.126.230.72 37.59.196.199 46.105.14.134 54.251.83.67 64.15.147.111 64.251.176.240 84.200.228.109 89.207.135.125 Page Requests: GET /admin.cgi HTTP/1.1 GET //cgi-bin/bash HTTP/1.0 GET /cgi-bin/bash HTTP/1.0 GET /cgi-bin/hello HTTP/1.1 GET /cgi-bin/helpme HTTP/1.0 GET /cgi-bin/info.sh HTTP/1.0 GET /cgi-bin/php5-cli? HTTP/1.1 GET /cgi-bin/php5? HTTP/1.1 GET […]
gebhard 2014-05-31 Uncategorized Blog
I've added a new RSS feeds for external news and blog posts I personally consider worth reading You should be able to add it to any RSS feed reader. https://www.thierfreund.de/newsfeed/ If you like it, drop me a line.
gebhard 2014-03-24 Uncategorized Conf Call, Fun, Video
You can only find this funny if you attend conf calls in real life … but then it's hard to spot the difference to the last call you attended 😉 http://www.youtube.com/watch?v=DYu_bGbZiiQ
gebhard 2014-03-23 Uncategorized Forensics, SANS, SIFT
Finally: the new version of SIFT has been released. http://digital-forensics.sans.org/blog/2014/03/23/sans-sift-3-0-virtual-machine-released
gebhard 2014-03-19 Uncategorized Blog, Drupal, WordPress
The server needed an upgrade … so the migration to the next Debian release had to be done. And of course the migration of the CMS. This was more complicated than expected … I wasn't able to find a smooth migration path from Drupal 6 to 7 for me (some important modules weren't available for […]
gebhard 2014-02-26 Uncategorized Full Disclosure