Penetration Test Report Tips
Recently, I've been doing a lot of penetration test reports. It's given me lots more insight on forming a better report, my initial reports were subpar at-best now that I've done dozens of them. I thought I'd make this post and share some tricks I've learned along the way, and things to avoid.
What happened last night? A story of DDoS
I received an alert from my filtering provider that my server was under attack. It was on the IP used for the internet gateway, which is interesting as I’ve kept everything pretty hidden with Cloudflare, firewall rules, and extra configuration. It felt like a targeted attack, but what caused this? The attack started around
Weekly Update 12: Security Newsletter and Forum coming soon!
I’ve begun a new adventure, I’ve teamed up with some friends to create a forum focused on cyber security research and system administration. It’s going to be interesting, and lots of hard work. I’m also starting a cyber security newsletter, called “Smash Sec” - a weekly newsletter giving cyber security briefs, tips and tricks.
Weekly Update 11: I’m speaking at BSides Ottawa! (2019)
On October 21st, I received the good news email, my proposed talk had been accepted and I'm going to be speaking at BSides Ottawa (2019). I'm really excited about this opportunity and I can't wait to share this talk with everyone! My talk is going to be about chaining web exploits to escalate
Reflection on running my own servers
I've came a long way since I first started building software and running my own blog. My first website I published in early 2000, it was a subdomain of my fathers domain. I focused on my dog on this website, and made him a little HTML fan page. I also created a little
Weekly Update 10: Museum, Podcasts and Code
It's been an incredibly busy and crazy week. It flew by so fast, and before I knew it, it's Monday again. Today's the day to vote in the Federal Election and I've got to be honest, there just isn't any single good candidate to vote for. But alas, I'm a big supporter in
DDoS Protection: My experience
At 9:30 PM last week, my infrastructure received a denial of service attack. The infrastructure hosts this blog, my wifes blog, my wifes eCommerce store and some work-in-progress projects that I'm preparing to release. In addition, it also hosts a VPN for when I'm on the go, a few staging environments, my media
Privacy in a digital age
Is there such thing as privacy in any modern digital society? In recent years, privacy has been a very hot topic. With the Snowden leaks and continuous reports of violations across the world, there’s a strong case against privacy in a digital age. I’d argue that you should have no expectation of privacy in
Why I’m running Cloudlinux
I’ve been a long time user of Debian to run my stack, and it’s been pretty resilient on my small websites. Alas, as my websites grow in traffic I wanted something to provide more security and isolation, while offering individual limitations for non-priority resources. I first spotted Cloudlinux when researching shared hosting isolation, and
Happy Thanksgiving
Happy thanksgiving to all my fellow Canadians, may your day be filled with happiness and love with the ones around you in your life.