Ideas, Tip and Tricks

SSL / TLS Security in the real world!

Best practices for SSL / TLS security for websites for maximum Security and optimal compatibility. In my previous article available here I have mentioned what SSL / TLS configuration you should implement if you can control what browsers / OSes your…
Book Review - CISSP for Dummies

Book Review – CISSP for Dummies 4th Edition

I decided in March to give the CISSP exam in April/May. As with most people I did not want to spend 3-6 months preparing for an exam I needed something short and concise. CISSP for Dummies despite the name fits…

Stagefright Android flaw – Easy protection!

Few days ago came a big vulnerability in Stagefright was announced by Zimperium, who stated that most Android phones could be remotely hacked by a malicious MMS. Around 50% of devices just need to receive it and the rest need…

Jarvis Sit Stand Desk Review

Recently our office got a few sit stand desks which looked interesting. I had never tried one before but once I started using the desk it felt nice. As with most people working years in front of a computer I…

FREAK! Another one bites the dust! New SSL vulnerability

This new SSL / TLS attack nick named FREAK actually exploits deliberately weak “export ciphers” push by the NSA more than a decade ago. These ciphers were deliberately made weak so that the US Government could decrypt the traffic. Export cipher suits such…

Installing latest ImageMagick and Imagick on CentOS 6

Quick and easy and way to install ImageMagick and Imagick on CentOS 6.6 in 5 mins or less This article was last updated on 2/16/2015. The versions are as follows: ImageMagick 6.9.0-4 Q16 x86_64 2015-01-23 Imagick-3.2.0RC1 First I recommend you…

Troubleshooting AppScan – Bypass application logoff on close

Troubleshooting IBM AppScan Login Macros Creating a login macro with AppScan can be extremely simple or extremely frustrating. I recently ran into a application which required I use Prompt login method because of a secondary info which was required. AppScan was successfully recording…

Howto: Remote CMD into another Windows box

Remote CMD into another Windows system A colleague of mine was recently running a Web Application Scanner over night on a Windows 8 desktop. In the morning he could not log back in. There were also a couple of disconnected…

SSL/TLS Security in the perfect world!

HTTPS Security in the Perfect World! Best practices for SSL / TLS security for websites if you have control over all Client Browsers / Operating systems.   Due to the current breakneck speed of vulnerabilities discovered and exploited in various…
Menu