-
May 30, 2018
Just imagine: your small web app, that allows user to download medium-large ZIP files, due a lucky reddit post, suddenly start to receive huge amount of traffic, and specifically a lot of downloads. The server is a small tier with… read more »
-
May 28, 2018
When performing the analysis of a malicious Android program directly on the device, often can be required to dump some network traffic. This operation is pretty simple when the device is connected to a wifi network managed by the analyst,… read more »
-
May 25, 2018
Every year, on May 25, i write a small post celebrating the Towel Day, but this time there is also a further event! Towel Day is an annual tribute to the late author Douglas Adams (1952-2001): on that day, fans… read more »
-
May 23, 2018
During a forensic analysis of a Windows system, it is often critical to understand when and how a particular process has been started. In order to identify this activity, we can extract from the target system a set of artifacts… read more »
-
May 21, 2018
The malware detects virtualized environments by taking infected machines' CPU temperature. When a malware infect a system, one of the next steps that it performs is gain persistence, a mandatory key to ensure the resilience of (for example) the connection… read more »
-
May 18, 2018
Alexandr Misko, 20 years old, a great percussive-fingerstyle technique and a successful career as a musician. Misko first caught the public's attention with an home recorded video, where he plays an original guitar piece with a "pentapping" base: https://www.youtube.com/watch?v=F1V3Pt7aFnI After,… read more »
-
May 16, 2018
Abusing SUDO for fun and profit! The SUDO (Substitute User and Do) command allows users to delegate privileges resources: users can execute specific commands under other users (also root) using their own passwords instead of user’s one or without password… read more »
-
May 14, 2018
Microsoft Terminal Services Remote Desktop Protocol (RDP) is a great feature that allows the interactive use or administration of a remote Windows system. However, it can be also used by an attacker, with compromised domain credentials, to move laterally across… read more »
-
May 11, 2018
Often to my guitar students i try to propose both pieces from standard course of study, and small exercises based on modern and famous themes. Usually, I take personally care of the transcription and arrangement of the songs, and today… read more »
-
May 9, 2018
Let us say it frankly: TMUX is a great console tool! TMUX is a terminal multiplexer, allowing a user to access multiple separate terminal sessions inside a single terminal window or remote terminal session: like GNU Screen, but with more… read more »
-
May 7, 2018
What is Domain Fronting? How it works? How can be used to evade internet censorship? Recently both Google and Amazon announced a change to its own infrastructure in order to avoid the use of domain fronting, the exploitation of a… read more »
-
May 4, 2018
When teaching music, one of the biggest challenge is to keep students constantly interested. Playing an instrument is also a muscular exercise, and the muscles must be trained. So, especially at the beginning of the cycle of studies, long technical… read more »
-
May 2, 2018
File carving is the process of reassembling computer files from fragments in the absence of filesystem metadata. This practice allows searching files or other kinds of objects based on content, rather than on metadata, for example for recovering files and… read more »
-
Apr 30, 2018
The security researcher Marius Tivadar has discovered a vulnerability on Windows NTFS filesystem and published a proof-of-concept code on GitHub that could be used to cause Blue Screen of Death within seconds on most Windows computers. One can generate blue-screen-of-death… read more »
-
Apr 27, 2018
“A mind is like a parachute. It doesn't work if it is not open.” (F. Zappa) On May 17, 1988, Frank Zappa and his band performed an awesome concert at the Palace of Sports of Barcelona: an extremley interesting concert,… read more »
-
Apr 25, 2018
Some days ago i've written about AWS S3 security concerns, with a post about some tools to find unsecured buckets. Today i've read on infosec Island this article by Sanjay Kalra, focused precisely on S3 security, with a useful security… read more »
-
Apr 23, 2018
The Windows Subsystem for Linux (WSL) is a great feature introduced in Windows 10. Is a compatibility layer for running Linux binary executables natively on Windows 10, and allows the use of a rather real linux installation, without using a… read more »
-
Apr 20, 2018
Paul Galbraith is an outstanding artist, especially in his interpretation of J.S. Bach. Galbraith, with the help of the great luthier David Rubio, has developed an entirely new type of guitar, the “Brahms guitar”, with eight strings (it adds a… read more »
-
Apr 18, 2018
Some interesting scripts, probably outdated but still useful. In 2012 Jacky Fox, on her MSc dissertation focused on extraction and correlation of Windows registry artifacts. During her research she realised a set of bash script for forensic interpretation of Windows… read more »
-
Apr 16, 2018
It's not a mystery: raw JSON it's not really readable! So, when you need to process a JSON array from command line, it's a good idea using some helpful tools. Here my own shortlist of command line tools for JSON… read more »