CyberSecurity

While working on an IDS Solution for a client, I came across Untangle, and I loved it so much that I pulled out an old box and loaded it up as my office firewall. One thing that is lacking, from my perspective (at least in the ‘free’ edition) is the firewall interface; Untangle uses an IpTables based firewall, but doesn’t replicate the usual INPUT FOWARD OUTPUT rulebase. I think that in 90% of usecases for Untangle, this isnt a problem, but I found it a little bit alien to have portfowarding hidden in the Networking config pane, and firewall separatly. ...

Recovering Data From Noise I’m definitly going to be lookin into this (and yes I’m prepared for the headache-inducing math it will accrue) cus I have an idea about an RF implementation… A New Wi-Fi Exploit, Limited But Clever Design Your Own Wordpress Theme Easily With Constructor

Super Happy Dev Castle – SHDC #0 This was a brilliant event, I just wish I had planned ahead to have a project to work on ! Install Multiple Linux Distributions Via PXE (The Easy Way) This is YAPIWD, yet another project i want to (or wont) do… Google Wave in Action: Real-World Use Case Studies [Use Cases] I never got into google wave that much but i think i may have to revisit it after reading this article! ...

Recent events in the cyber-security world have got me feeling paranoid. Between Estonia, Georgia, and the ever-increasing focus on Chinese cyber-political-warfare, geo-political entities are starting to realise that the whole ’lets stockpile enough weapons to blow up the world enough times for the number to be rendered pointless’ may not have been the best plan. China has caught everyone off-guard with its recent, albeit ‘hush hush’, displays of force (while not entirely getting off scott-free), and we should probably be alot more afraid of a cyber war than of flaming pants or security-crossed lovers. ...

For a man who’s title is currently Baron Mandelson, _of Foy in the County of Herefordshire and of Hartlepool in the County of Durham, _First Secretary of State, Secretary of State for Business, Innovation and Skills, President of the Board of Trade and Lord President of the Council, educated in Philosophy, Politics and Economics, and is hotly tipped to become a major part of the Lisbon-Treaty-generated-unelected-cou-detat-european-super-parliment, you’d think the power-addicted, peace-process screwing, ‘shreud loaning’ rat would leave well enough alone. ...

Currently, this is a major American congressional argument, and hasn’t really come up publicly in Europe (outside of Scandinavia , but Net Neutrality is going to be one of those issues that if people aren’t made aware of it, the legislation removing it will sweep over all of us. Imagine what would have happened if in 1998, ISP’s had throttled the traffic going to a little rack in Stanford University that would late take over the internet as the great distributor of information. Imagine if Google couldn’t pay the ’top-tier access fee’ and had simply died. ...

Recently the only additions I’ve been making to this blog are presumptious ' I’ll be doing this’ messages, and this is no excection. I’ve been living and working in Athlone, Ireland for the past year and have really learnt alot and very much enjoyed myself, but however much I will miss the place, academia drags on; it sounds like a campaign slogan but I’m back in Queens for ‘TWO MORE YEARS…TWO MORE YEARS’ ...

Last week or there abouts, there was a big buzz around the interwebs revisiting Dan Kaminski’s OzymanDNS tool, a perl based toolkit for tunnelling TCP traffic over DNS requests (technically its TCP over SSL over DNS but whos counting) That was originally released mid-2004. I never really found the true source of the new hype surrounding a “old” project (it may have been HAK5’s episode 504 that demonstrated the tool, mubix has put the write up in at room362) ...

So, I’ve been experimenting over the weekend with Backtrack 4. My… Lord…. Times have changed, it used to be that if you wanted to mess with WEP you have to go thru a dozen intermediate stages. wesside-ng makes life so much simpler.30 minutes, fully automated. What i had done previously was manual airodump-ng, aireplay-ng with arp attacks, and then shifting the caps onto my big box to crack inside of 10 seconds, pity is the packet capture on a quiet network can take a day. ...

Ok, got the 900, sorry this blog is very very late Pros: AMAZINGLY small, you wont believe how small it is until you use one The keyboard is just managable the Webcam is amazing quality when it works More responsive than i imagined The Extra 16GB SSD really helps Wonderfully fast bootups (If you never plug it in to any accessories (other than charger) set the Boot Booster enabled under the BIOS, trims a second or two) ...