Read about "bsideslv" wiki, training, posts, blogs, discussions, overview, Q&A, vendors, products, and events.

Background If you have followed my research on the infamous CVE-2017-0199 zero-day attack, you may know we (w/ my colleague Bing) did a p...

Shared with Dropbox

Summary In this blog post, we are going to explore what the metadata of a document are and why it's such a juicy source of information for advanced attackers. A document's metadata allows to collect various high-sensitive data such as usernames, software…

2 points and 0 comments so far on reddit

BackgroundFactorio is a very popular multiplayer factory management and automation game. It supports modification though the use of Lua noscripts. For security...

Have you ever thought about what you could be exposing to the internet and how vulnerable that makes you?

Proxy re-encryption is a set of algorithms which allows an untrusted proxy to transform ciphertext from being encrypted under one key to…

PyMLProjects - Random repo of machine learning ideas orchestrated in python

Windows 10 represents the best and newest in our strong commitment to security with world-class mitigations. One of Microsoft’s longstanding strategies toward improving software security involves investing in defensive technologies that make it difficult…

1 points and 0 comments so far on reddit

The official blog of WizSec, a group of bitcoin security specialists, and their investigation into MtGox.

Problem: The client has blocked Powershell.exe using AppLocker and I don’t have the dough for Cobalt Strike. I want to get an Empire payload on a workstation via a phishing campaign and I nee…

BHUSA2017 - Content from presentation at BHUSA 2017

Here are our FIVE suggested ways that you can deploy to speak at a Cybersecurity Conference. Speaking at a Conference is awesome for your career. Learn how!

Modern websites are browsed through a lens of transparent systems built to enhance performance, extract analytics and supply numerous addi...

3 points and 2 comments so far on reddit

We are thrilled to announce Suricata 4.0. This is a major new release, improving detection capabilities, adding new output options and more protocols. Improved Detection Based on valuable feedback …

Skype-Type - Don't Skype & Type! Keyboard acoustic eavesdropping tool.

Owasp London July event is now live