Recording your Security Program
One thing I have learned from being subjected to too many security audits is the importance of documenting everything you do regardless if it paints your company in a good light or not. If a user asks you to restore a file then record this as a Restore test. if a user loses their phone […]
Best Open-Source Vulnerability Scanner
If you’re looking for a great open-source vulnerability scanner you can do a lot worse than OWASP ZAP. All features are free unlike the likes of BurpSuite and it is under active development unlike Arachni. There is a good community who provide custom scripts available on github. It comes as part of Kali and will […]
Using Elasticsearch as a Sflow Collector
If you are looking for a good open-source sFlow collector and don’t like the look of Nfsen or FlowViewer then you should consider trying Elasticsearch. Bash Script To get the data into Elasticsearch we take a low spec ubuntu server and install wireshark on it. Now create a bash script as per below. This script […]