OSSEC Agent to Server Connection Issues
So naturally, as of late, I have found myself doing more than I probably need to on my servers and in the process causing more headaches then required. One of those issues has been with the communication between my agents and the mother-ship (command control) server with my OSSEC installs. For more details information, be…
Read MoreUpdate WPSCAN using GIT on BackTrack 5R2
So I have been playing with a number of tools lately and this was perhaps one of the easiest things I couldn’t figure out. Talk about having a “WTF” moment. If you’re curious, wpscan is a vulnerability scanner designed to pentest WordPress applications. It has a number of features that allow you to enumerate usernames, plugins, and…
Read MoreBlack Hole Exploit Kit 2.0 Released
If you’re not aware, there are number of kits available to crackers intent on causing your website harm. And NO, not all crackers are created equal. There are those that are developing and creating their own infections and then there are those that leverage the infections being developed. Today, one of the most prevalent kits…
Read MoreSocial Engineering – Today’s Reality
Although social engineering has been around for some time, it’s probably not been as prevalent as it has become in recent months. Perhaps the one event that has forced many of the largest companies to rethink their security posture was the complete dissolution of Matt Honan’s digital presence in August. In the weeks following it…
Read MoreGetting to Know Stuxnet
While monitoring the malware feeds today someone rehashed an article that described how Stuxnet had been deciphered by InfoSec professionals back in 2011. Although the article is exceptionally long, for InfoSec types its very interesting and informative. If you have any inclination to better understand how malware works this is an excellent article. What I…
Read MoreBasic Access Authentication: Protection Against Automation
I wrote an article recently talking to the use of Basic Access Authentication to help harden your administrator panel. I have been monitoring my logs to see how it protects and this is what I found:
Read More