Physical Location Security (Wild West Hacking Fest Talk)

This year the lady gave me a lockpicking set. I’ve always been interested in security, mostly in the digital space, but also for assets in the real world.

When we got our apartment I was very pleased that the door locks in three places and that the key is two dimensional. Certainly not high security stuff, but at least not kicked down with one swing.

When I talk to other people they usually become uncomfortable or resignated when we look at how easily things can be broken, broken into or exploited. In a way I think that’s a mindset issue.

The ones that get uncomfortable usually resort to something like:

These hackers should just stop showing everybody how to break into stuff on YouTube!

Continue reading “Physical Location Security (Wild West Hacking Fest Talk)”

Capturing HTTP traffic with Wireshark

Most of us have to use certain tools when working with large clients or corporations because it works for them and I personally love when it’s web interfaces compared to MS Office documents and exchange servers. Sadly one of them did not run on HTTPS and I brought up a security concern to the administrator.

Continue reading “Capturing HTTP traffic with Wireshark”

Google Chrome Password Manager

Google Chrome has a password manager built in, if you’re using it with your Google account, that resembles the functionality of LastPass, KeyPass or 1Password. Now it also suggest you to use a randomly generated password, that is saved and synchronized with your Google account.

Continue reading “Google Chrome Password Manager”

CigTrack Day #6: Security and bcrypt

I’m a fan of improvisation, Duct-tape and hacking things into what you want them to do speedily and without a lot of testing. One of the areas, where I wouldn’t follow this approach is security.

Security is something many companies don’t take serious. Their servers get broken into, all their user’s data are stolen, leaked, etc. Not cool.

This is not because security is impossible, it’s because it’s just often ignored and can be expensive. Nothing is unbreakable, but in my opinion it’s worth to at least make an effort towards: hard to break. Continue reading “CigTrack Day #6: Security and bcrypt”