Tag Archives: Information Security

What’s the point of reporting 0day?

Posted on June 17, 2013 by Simon Roses

In the last weeks the news related to PRISM has not stopped since leaked by Edward Snowden, who worked for Booz Allen Hamilton, a defense contractor for the NSA. One interesting outcome of these leaks is the NSA access to … Continue reading →

Posted in Business, Microsoft, Pentest, Security, Technology | Tagged 0Day, Application Security, attack vector, Computer Network Operations (CNO), Cyber Wars, exploit, Google, Information Security, Information Warfare, Intelligence, Software Security | Leave a comment

AppSec: Build Rooted Detection in your App

Posted on June 4, 2013 by Simon Roses

For various reasons many Apps need to detect if the phone has been “rooted” and in this article will see different techniques for this purpose. Since it is common to see this type of questions in development forums, I thought … Continue reading →

Posted in Pentest, Privacy, Security, Technology, Threat Modeling | Tagged Android, Application Security, Apps, Information Security, Penetration Testing, Reverse Engineering, Software Security, VULNEX | Leave a comment

My 10 Cyber Weapons Tool List

Posted on April 22, 2013 by Simon Roses

Few weeks ago the media did publish that the US Air Force has classified 6 tools as cyber weapons, no doubt a hot topic. For this post I will do the same and put a list of 10 tools that … Continue reading →

Posted in Pentest, Security, Technology | Tagged attack vector, Cyber Warfare, exploit, Fuzzing, Information Security, Information Warfare, Intelligence, Metasploit, Penetration Testing, Reverse Engineering, Tiger Team | 1 Comment

AppSec: Improve your software security with GCC Stack Protector Strong

Posted on April 10, 2013 by Simon Roses

The other day helping out a client to develop secure software it came to my mind that this topic could be of interest to my readers. Obviously this topic is quite wide, but in this article I will focus in … Continue reading →

Posted in Pentest, Privacy, Security, Technology, Threat Modeling | Tagged Application Security, AppSec @en, attack vector, Compiler, GCC, Information Security, Linux, SDL, Software Security | Leave a comment

AppSec USA 2012: the experience

Posted on October 31, 2012 by Simon Roses

You know you are in Texas when you get out of the plane and hear country music through the airport and I was there indeed because the 25 and 26th of October the OWASP AppSec USA conference was taking place … Continue reading →

Posted in Conference, Hacking, OWASP, Pentest, Privacy, SDL, Security, Technology, Threat Modeling | Tagged Application Security, Apps, Information Security, OWASP, SDL, Software Security, Web Honeypots | Leave a comment

Medre, AutoCAD Malware: The spy inside the cad

Posted on July 16, 2012 by Simon Roses

Last June a malware that infected AutoCAD for Windows was identified and is responsible for the theft of thousands of documents. AutoCAD is a popular program for 2D and 3D drawings that is used to design all kinds of products, … Continue reading →

Posted in Pentest, Security | Tagged Android, APT, attack vector, Information Security, Intelligence, Iphone, malware, SCADA, virus, Worm | Leave a comment

“Find And Call” Smartphone Malware Analysis

Posted on July 11, 2012 by Simon Roses

[Español] La semana pasada Kaspersky publicó un artículo sobre un nuevo malware que afectaba a iPhone y Android, y esta App estaba disponible en sus mercados oficiales. Al ser el primer malware que aparece en el iPhone Market he pensado … Continue reading →

Posted in Hacking, Security, Technology | Tagged Android, Apps, attack vector, Information Security, Iphone, malware, Smartphone, Software Security | Leave a comment

Oh No AIX Security

Posted on July 5, 2012 by Simon Roses

[Español] Pues sí, estimados lectores, recientemente tuve que auditar entornos AIX (ya sabéis, esos UNIX propietarios de IBM), por lo que he pensado que sería interesante exponer una serie de consejos sobre cómo auditarlos. [English] True, my dear readers, recently … Continue reading →

Posted in Hacking, Pentest, Security | Tagged aix, audit, Information Security, Metasploit, Password, Penetration Testing, security assessment, unix | Leave a comment

Network Intelligence Analysis

Posted on June 20, 2012 by Simon Roses

Analizar tráfico de red es realmente apasionante y para este post he pensado que sería un tema de interés para los lectores. El tráfico aquí analizado es más a modo de hobby cuando estoy en redes públicas/abiertas como hoteles, cafés … Continue reading →

Posted in Hacking, Pentest, Security, Technology | Tagged attack vector, Computer Network Operations (CNO), Cyber Wars, exploit, Information Security, Intelligence, Network, OSINT, SIGINT, visualization | Leave a comment

Blackhat Europe 2012, MundoHackerTV and More

Posted on April 13, 2012 by Simon Roses

[Español] Llevaba demasiadas semanas sin escribir un post y no puede ser 🙂 La verdad es que estoy bastante ocupado con VULNEX (startup especializada en ciberseguridad) pero he sacado un poco de tiempo para contaros las novedades. [English] Too many … Continue reading →

Posted in Conference, Pentest, Security, Technology | Tagged Android, Application Security, Apps, Conference, CyberSecurity, Information Security, Iphone, Smartphone, Software Security, VULNEX | Leave a comment

Tag Archives: Information Security

What’s the point of reporting 0day?

AppSec: Build Rooted Detection in your App

My 10 Cyber Weapons Tool List

AppSec: Improve your software security with GCC Stack Protector Strong

AppSec USA 2012: the experience

Medre, AutoCAD Malware: The spy inside the cad

“Find And Call” Smartphone Malware Analysis

Oh No AIX Security

Network Intelligence Analysis

Blackhat Europe 2012, MundoHackerTV and More

Archives

Meta

Languages

My Speaking Events

Search www.simonroses.com

Categories

Blogroll