Home » Categories

Infosec

Site Update: Cloudflare

This site now uses CloudFlare

April 16, 2020 · 2 min · Chris

AWS Cloudwatch

AWS CloudWatch enables monitoring and alerting on cloud events.

April 3, 2020 · 4 min · Chris

AWS Security Hub

AWS Security Hub eases the pain of cloud monitoring

February 21, 2020 · 4 min · Chris

Protect AWS API Gateway with AWS WAF

Help protect APIGW from attackers with AWS WAF

January 31, 2020 · 5 min · Chris

AWS CloudTrail

AWS CloudTrail is the cornerstone of cloud SECOPS

January 30, 2020 · 3 min · Chris

Public Bug Bounty Rules of Engagement

I share my experience and lessons learned from operating a public bug bounty.

April 9, 2019 · 2 min · Chris

Extract files from network capture

Extract files from tcpdump or wireshark captures

January 24, 2019 · 2 min · Chris

Decrypting Java TLS to View in Wireshark

Use this to recover TLS session keys for a java program.

October 26, 2018 · 1 min · Chris

Mallory in the Mobile

Use mallory proxy to view non-https encrypted mobile traffic

October 15, 2018 · 8 min · Chris

The new face of the security team DoS

Nearly a year ago, I wrote about an emerging trend I observed with some of the bounty researchers I was interacting with. This screed can be considered an extension of that article. There an emerging trend I’m noticing - I’ve been receiving more messages like the following: Hey , I found Security Vulnerability in your web application ,which can damage site as well as users too.For security purpose can we report vulnerability here,then will i get bounty bounty reward in PayPal or Bitcoin for Security bug ? ...

September 14, 2018 · 2 min · Chris