Just the Facts Ma’am
Sometimes when you're testing it's good to be able to quickly get a feel for where to focus your attention or to get an overview of all the ports you've got open, so you can be sure you investigate all ... Read More
Just the Facts Ma’am
Sometimes when you're testing it's good to be able to quickly get a feel for where to focus your attention or to get an overview of all the ports you've got open, so you can be sure you investigate all ... Read More
Creating a Simple Vulnerability Database – Part 2
We left off last time having created a simple vulnerability database using Ruby on Rails. So the next piece of the puzzle is getting that data into Dradis. Luckily Dradis has a nice plugin system which is designed to ease ... Read More
Creating a Simple Vulnerability Database – Part 2
We left off last time having created a simple vulnerability database using Ruby on Rails. So the next piece of the puzzle is getting that data into Dradis. Luckily Dradis has a nice plugin system which is designed to ease ... Read More
Creating a Simple Vulnerability Database – Part 1
One of the main tools that I've found useful in pen. testing is the Dradis Framework, it's a good way of keeping track of findings and notes during a test and I've also found it's template feature is good for ... Read More
Wireless Scanning and a new tool
I had some cause to do some wireless work recently, which got me interested in doing some more war-walking (and hey, the weathers actually been nice enough to make it pleasant recently). It was interesting to see the density of ... Read More
Interesting Example of Cloud Computing Risks
One of the aspects of the move to cloud computing I find most interesting is the new and emergent risks that come with the move of services from a traditional networked IT environment, to being hosted "out in the open" ... Read More
Scottish Ruby Conference follow-up – 2 – Securing your app.
Most of the questions I got after my talk were around how people can look to secure their application. I mentioned a couple of sites and it's probably worth expanding on the points made. Web Application Security For people looking ... Read More
Scottish Ruby Conference & Breaking things with Ruby
Just had the first day of the Scottish Ruby Conference. The venue was awesome, there'll doubtless be lots of good pictures up on places like flickr in due course, but here's a couple I snapped with my Nokia n900. The ... Read More
Tools I use – Burp
I've been meaning to do a post on burp for a while, and courtesy of my new years resolution to stop procrastinating, here it is :) I was thinking of a way to sum up burp, so far the best ... Read More
