Using netbox and ansible to automate the catalogging of your IP addresses and services.

Using netbox and ansible to automate the catalogging of your IP addresses and services. First part describes automating the installation.

A simple way to automate the repetitive parts of your pentest using typical DevOps tools.

A simple way to automate the repetitive parts of your pentest using typical DevOps tools.

This post walks through basic osquery and Splunk installation – but with a twist. I use these security tools to monitor for connections so as to keep track of my work hours.

A few tips on using jupyter for reverse engineering and pwn challenges.

Using WebDriver to automate pentest activities - two use cases and some code.

I’ve been beefing up the security of my home network recently. If you were to ask me why, I could rattle out a few good excuses, such as “it’s good to maintain good computer hygiene, especially at home” or “as a fan of CTF’s, I’m concerned that I’ll accidentally pick up something nasty which will own my network”. Oooo, hey, here’s a good one: “to be a good red teamer, you have to know how blue teams operate”. Those excuses are all well and good; to be honest, though, the real reason I’m messing around with defensive security nowadays is that it’s just fun as hell. ...

I’ve been using certificate transparency with increasing frequency during my network pentests. What a great source of information! I’ve found it so useful that I wrote a short standalone script to search for domains in a transparency log and resolve them to IP addresses. What’s certificate transparency? There’s an actual site dedicated to describing Certificate Transparency (https://www.certificate-transparency.org/), which I recommend you check out. In a nutshell, CT is a mechanism that provides real-time monitoring and auditing of certificate information. If you’ve ever clicked on that little padlock next to the URL of a site you’ve visited in your browser, chances are that you’ve used CT. ...