06/19/2013

Posts Comments

Recent Posts

dirtysec_2012

DirtySec: We’re done… for now.

Did you ever wonder what #DirtySec is? You might have read the hashtag on Twitter a couple of times. You might have googled it, just to find out that the results change to something completely different after the unavoidable links to ChrisJohnRiley’s blog. You might have seen people wearing T-shirts saying “Dirty Security World Tour 2011” or you might even be one of the lucky few you got one … [Read More...]

hashdays

hashdays: There goes 2011, here comes 2012!

This is a post I wanted to post since… well, October when we actually ran the conference. However, there were reasons that kept me from doing so. The most significant reason was, that I needed to sleep. A lot. But I also wanted to give people some exclusive info about next year - if there is a next year. I’m glad to announce now that there will definitely be hashdays 2012 and you are among the … [Read More...]

ptes-2

PTES: Request for Feedback

You probably have heard of the Penetration Testing Execution Standard (PTES) we kicked off about a year ago. We are happy to announce that we released the initial version and we want your feedback on it. As we announced on our panel at hashdays a couple of days back, we really need this feedback to move forward, especially if you're on the business side of the industry and in a position where you … [Read More...]

brucon

Looking back: BruCON 2011

What comes to mind when you think about Belgium? Beer? Waffles? Fries? Yeah. But if you haven’t spend the last couple of years under a rock, you will also think about BruCON, a great con in Brussels which combines some of the best things Belgium has to offer: Beer and infosec. At the third edition, which took place this week at the Vrije Universiteit Brussel, I had the opportunity to present … [Read More...]

Printscreen (X-Pire)

Defeating X-Pire

"X-Pire: Welcome to the web page of X-pire! - the innovative software that adds a digital expiration date to your images." Description: X-Pire is a cutting edge technology to prevent for nudes from spreading all over the interwebs. It uses crazy-ass alien technology and unicorn blood to prevent images from being viewed after a certain expiration date. It has been developed at a university, so … [Read More...]

source_location

SOURCE Barcelona and BruCON, Brussels

So, after I spent the last week being swamped after returning from an awesome week travelling through Europe, attending two brilliant cons and meeting a lot of old and new friends, I finally get around to post something here. I'll keep this one really short, but I hopefully be able to release some more of the research I did in the last few months here. If you are interested in my notes from SOURCE … [Read More...]

hell

The Nine Circles of Responsible Vulnerability Disclosure Hell

Responsibility /rɪˌspɒnsɪˈbɪlɪti/ the state or fact of being accountable or to blame for something There has been a lot of talk about so-called "responsible disclosure" lately. The discussion was primarily fueled by the fact, that a lot of researchers are no longer willing to give away the countless hours spent to find a bug for free. The slogan "No more free bugs" was made public at … [Read More...]

recruiting

How to Hire a Hacker

I've been doing IT security related work in Switzerland for a long time. I had the chance to do a lot of inspiring stuff and work with amazing people. And the nicest thing about it is: It's going on. While I love to meet new people, I think that a certain level of persistence is a nice thing to have in a work environment. If the people you're working change all the time, you tend to miss their … [Read More...]

johnwayne

The Good, the Bad and the iPhone…

I don't know about you, but if someone asks me what the most annoying thing in my professional life this year was, I'm going to reply without hesitating: The iPhone. Don't get me wrong. I use one myself. I like it and I use it very, very often. And others obviously do as well. Since the release of the iPhone 3GS, I did a "iPhone Risk Assessment" every other week for various customer. The … [Read More...]

stevejobsipad

Can I run an iPad 3G with any Sim Card?

This is an old blogpost that was imported from my own blog. If things don't add up (missing links, images – stuff like that) don't worry, it's ancient anyway. If you need some info desperately, feel free to contact me directly. Now this is something I got a lot during the last few days since I got back from NYC with new iPad 3G, which I assumed, might be the first one to be used in … [Read More...]