I’m implementing an OCSP server to answer OCSP requests for my custom CA.
I already implemented the invalidation of leaves certificates, with the intermediate CA certificate signing the OCSP response, and it seems to be working.
However, I…
On reading about IMSI catchers, I keep seeing that they “impersonate” a real cell tower or “base station” so that the phone drops its signal-carried data on that machine while on its way to the intended destination.
What I don’t understan…
I am evaluating the above service design where I want to have mechanism to pass a user through multiple microservices. In this simple example, the user goes through a sign-up process and once done, the user is redirected to another micro…
I am planning to implement JWT authentication on my micro-services to achieve zero trust architecture. User will generate a JWT token through front end micro-service. Each subsequent request will contain this JWT which will be forwarded to…
I do not want my ISP logging any of my data, and do not trust my VPN either. Is it a safe measure to use Whonix in a VirtualBox, connecting over VPN, then using remmina to connect to an RDP? My goal is so that ISP and VPN cannot log data o…
I’m trying to understand how using a crypto co-processor chip can securely decrypt a disk without someone getting the decryption key by sniffing the bus it communicates on or loading the disk onto another computer and viewing the contents …
I want to set up a MITM-scenario as an exercise for myself. My setup looks like this:
Internet <——–> Laptop <———-> Client
At this stage I just want to route the traffic from my AP to the internet, without monitoring …
I am trying to configure ZAP on an Android device using a hotspot connection opened on another Android device.
I followed the setup instructions available here: https://security.secure.force.com/security/tools/webapp/zapandroidsetup I als…
Somewhat related to Is malware or screen capture possible with iMac as external display?, where we investigate the possibility of a DMA attack through DisplayPort, nowadays, many machines don’t even have a dedicated port for connecting an …
IDA Pro and the Hex Rays decompiler are a core part of any toolkit
for reverse engineering and vulnerability research. In a previous blog
post we discussed how the Hex-Rays
API can be used to solve small, well-defined problems commonly
seen as …
