Security Tools And Technology Archives

Enable 2FA with SSH Connection

By Tony Perez | July 24, 2013 |

Two Factor Authentication Personal Security Online

If you don’t know, I’m a big fan of two-factor authentication. I often talk about it integrated into your web applications access points, like wp-admin in WordPress and administrator in Joomla, but in this post I’m going to talk about leveraging it with your SSH connections. When configuring your server access points it’s important you…

Jump Between Servers using SSH and Shuttle

By Tony Perez | July 22, 2013 |

Jason Tucker shared this cool link over the weekend and I like it a lot and wanted to share. It’s a tool that allows you to quickly access your various servers via SSH. If you authenticate using keys, then this is a serious win for you. It allows you to manage multiple SSH accounts via…

Protect Your Website Vulnerabilities With a WAF: New Compairson Report: CloudFlare vs Incapsula vs ModSecurity

By Tony Perez | March 9, 2013 |

A new report came out in February, put together by Zero Science Lab, in which they compare the effectiveness between CloudFlare and Incapsula. In it they did the same thing Philip Tibom of Sweden did last year in his comparative report in which he concluded that Incapsula was the superior product. In this new report…

Security Implications of WordPress in The Enterprise

By Tony Perez | January 30, 2013 |

My Chileno brother from another mother, Chris Lema, put out a great guest post on WPEngine yesterday talking about WordPress and the Enterprise. He talks to the how and why of it’s emergence in the enterprise scene, but in the process makes a number of statements that very clearly explains the challenges we face as…

Web Application Vulnerability Scanners: W3AF – 12.10 xUbuntu Installation

By Tony Perez | January 28, 2013 |

I have been interested in the Web Application Attack and Audit Framework (W3AF) since I first heard about it last summer, 2012. It was unfortunately not the most straight forward installation, it contains a number of dependencies and not something I was willing to invest into. I was also a bit more novice than I…

Protecting Your Website: CloudFlare or Incapsula?

By Tony Perez | November 13, 2012 |

I get this question a lot whenever I talk with clients or give presentations, “How do I prevent my website from being hacked?”. Many actually confuse the service we offer at Sucuri as a preventive service. Good thing we don’t advertise preventive services. That’s right, our service sits in the detection and remediation realm. By…