Developers: Try this!
In the spirit of security, I'd like to challenge every developer that reads this blog to one simple challenge: Every time you see a piece of code, spend some time assessing it, and understanding what it's supposed to do, and how it could fail. Once you've done try, try to make it fail using
Good Morning Vietnam!
A surprising and fun tale happened on January 1st, 2020! My father and I were sitting in an outdoor shack (aptly names due to its structure), housed inside was the HAM Radio equipment. We wanted to listen in on Venezuela, but the conditions weren’t right and there wasn’t a good enough skip. After rolling
2019 – Reflection
As we approach the end of 2019, I pop open my last years resolutions to see how fan I've came in my progress. This year I'd like to share my goals from last year, my progress, and start new goals for the upcoming year. 2018-2019 Goals Start a blog, and post regularlyStart a cyber security
Email Migration: Part 1
I've decided after years of self-hosting my own email and recently using GSuite for a few domains to take advantage of their storage options (unlimited), I'd like to migrate my email server from postfix/dovecot hybrid to Exchange Server. I found that Exchange is fairly well supported, the interface is easy to use, and
Weekly Update 13: New Horizons
I've began on my quest to start a non-profit foundation. As you may be aware, I'm pro-privacy, pro-security and believe you shouldn't have to give up one to receive the other. There is no need for backdoors, or any system designed to circumvent an individuals privacy. I haven't got a name yet, however, I've
Penetration Test Report Tips
Recently, I've been doing a lot of penetration test reports. It's given me lots more insight on forming a better report, my initial reports were subpar at-best now that I've done dozens of them. I thought I'd make this post and share some tricks I've learned along the way, and things to avoid.
What happened last night? A story of DDoS
I received an alert from my filtering provider that my server was under attack. It was on the IP used for the internet gateway, which is interesting as I’ve kept everything pretty hidden with Cloudflare, firewall rules, and extra configuration. It felt like a targeted attack, but what caused this? The attack started around
Weekly Update 12: Security Newsletter and Forum coming soon!
I’ve begun a new adventure, I’ve teamed up with some friends to create a forum focused on cyber security research and system administration. It’s going to be interesting, and lots of hard work. I’m also starting a cyber security newsletter, called “Smash Sec” - a weekly newsletter giving cyber security briefs, tips and tricks.
Weekly Update 11: I’m speaking at BSides Ottawa! (2019)
On October 21st, I received the good news email, my proposed talk had been accepted and I'm going to be speaking at BSides Ottawa (2019). I'm really excited about this opportunity and I can't wait to share this talk with everyone! My talk is going to be about chaining web exploits to escalate
Reflection on running my own servers
I've came a long way since I first started building software and running my own blog. My first website I published in early 2000, it was a subdomain of my fathers domain. I focused on my dog on this website, and made him a little HTML fan page. I also created a little