Category Archives: Pentest

AppSec: Improve your software security with GCC Stack Protector Strong

Posted on April 10, 2013 by Simon Roses

The other day helping out a client to develop secure software it came to my mind that this topic could be of interest to my readers. Obviously this topic is quite wide, but in this article I will focus in … Continue reading →

Posted in Pentest, Privacy, Security, Technology, Threat Modeling | Tagged Application Security, AppSec @en, attack vector, Compiler, GCC, Information Security, Linux, SDL, Software Security | Leave a comment

Book Review: The IDA Pro Book, 2nd edition

Posted on March 22, 2013 by Simon Roses

If you like reverse engineering and want to learn all the secrets of IDA Pro, this is your book. This work written by Chris Eagle, a top expert on the subject, reveals the power of the best tool for reverse … Continue reading →

Posted in Books, Pentest, Security, Technology | Tagged Application Security, Book, Book Review, RE, Reverse Engineering, Reversing, Software Security | Leave a comment

Back to Black Hat Europe and my talk on Anti-Theft

Posted on March 18, 2013 by Simon Roses

Last Thursday 14 and Friday 15 March the Conference Black Hat Europe was held in the great city of Amsterdam, a mandatory event for cyber security experts. For second year running I presented on R&D outlining the security posture of … Continue reading →

Posted in Conference, Pentest, Security, Technology | Tagged Android, Anti-Theft, Application Security, Conference, CyberSecurity, Iphone, Penetration Testing, Software Security, VULNEX, Windows | Leave a comment

AppSec USA 2012: the experience

Posted on October 31, 2012 by Simon Roses

You know you are in Texas when you get out of the plane and hear country music through the airport and I was there indeed because the 25 and 26th of October the OWASP AppSec USA conference was taking place … Continue reading →

Posted in Conference, Hacking, OWASP, Pentest, Privacy, SDL, Security, Technology, Threat Modeling | Tagged Application Security, Apps, Information Security, OWASP, SDL, Software Security, Web Honeypots | Leave a comment

Medre, AutoCAD Malware: The spy inside the cad

Posted on July 16, 2012 by Simon Roses

Last June a malware that infected AutoCAD for Windows was identified and is responsible for the theft of thousands of documents. AutoCAD is a popular program for 2D and 3D drawings that is used to design all kinds of products, … Continue reading →

Posted in Pentest, Security | Tagged Android, APT, attack vector, Information Security, Intelligence, Iphone, malware, SCADA, virus, Worm | Leave a comment

Oh No AIX Security

Posted on July 5, 2012 by Simon Roses

[Español] Pues sí, estimados lectores, recientemente tuve que auditar entornos AIX (ya sabéis, esos UNIX propietarios de IBM), por lo que he pensado que sería interesante exponer una serie de consejos sobre cómo auditarlos. [English] True, my dear readers, recently … Continue reading →

Posted in Hacking, Pentest, Security | Tagged aix, audit, Information Security, Metasploit, Password, Penetration Testing, security assessment, unix | Leave a comment

Network Intelligence Analysis

Posted on June 20, 2012 by Simon Roses

Analizar tráfico de red es realmente apasionante y para este post he pensado que sería un tema de interés para los lectores. El tráfico aquí analizado es más a modo de hobby cuando estoy en redes públicas/abiertas como hoteles, cafés … Continue reading →

Posted in Hacking, Pentest, Security, Technology | Tagged attack vector, Computer Network Operations (CNO), Cyber Wars, exploit, Information Security, Intelligence, Network, OSINT, SIGINT, visualization | Leave a comment

Blackhat Europe 2012, MundoHackerTV and More

Posted on April 13, 2012 by Simon Roses

[Español] Llevaba demasiadas semanas sin escribir un post y no puede ser 🙂 La verdad es que estoy bastante ocupado con VULNEX (startup especializada en ciberseguridad) pero he sacado un poco de tiempo para contaros las novedades. [English] Too many … Continue reading →

Posted in Conference, Pentest, Security, Technology | Tagged Android, Application Security, Apps, Conference, CyberSecurity, Information Security, Iphone, Smartphone, Software Security, VULNEX | Leave a comment

AppSec: Static Application Security Testing (SAST) Free Tool Map

Posted on February 23, 2012 by Simon Roses

[Español] Cuando realizo un análisis de seguridad en una aplicación intento combinar el uso de Static Application Security Testing (SAST) y el Dynamic Application Security Testing (DAST) para obtener los mejores resultados. Dejamos DAST para otro post. [English] When I’m … Continue reading →

Posted in Pentest, SDL, Security | Tagged Application Security, DAST, Information Security, SAST, SDL, Software Security | 2 Comments

VULNEX, up & running

Posted on February 13, 2012 by Simon Roses

[Español] Por fin VULNEX, el proyecto en el que llevo meses trabajando, ha visto la luz aunque sin duda estamos en los comienzos y queda mucho trabajo duro por delante pero con gran ilusión. [English] Finally VULNEX, the project I’ve … Continue reading →

Posted in Business, Pentest, SDL, Security, Technology | Tagged Application Security, Business, Information Security, Penetration Testing, Software Security | Leave a comment

Category Archives: Pentest

AppSec: Improve your software security with GCC Stack Protector Strong

Book Review: The IDA Pro Book, 2nd edition

Back to Black Hat Europe and my talk on Anti-Theft

AppSec USA 2012: the experience

Medre, AutoCAD Malware: The spy inside the cad

Oh No AIX Security

Network Intelligence Analysis

Blackhat Europe 2012, MundoHackerTV and More

AppSec: Static Application Security Testing (SAST) Free Tool Map

VULNEX, up & running

Archives

Meta

Languages

My Speaking Events

Search www.simonroses.com

Categories

Blogroll