One of the world’s most visited websites that nobody is aware of

The editorial department of well-known Dutch broadcaster RTL News recently asked for my assistance. Multiple tax files of Dutch citizens had been published via www.docplayer.nl and no one could explain – where did these files come from? Who would have thought that my research would lead to the discovery of one of the world’s most frequently visited websites (!).

Door |2024-07-25T14:48:09+00:00oktober 26, 2017|Article, Artikel, Engels, Nederlands|Reacties uitgeschakeld voor One of the world’s most visited websites that nobody is aware of

Harakiri – exploitation of a mail handler

If you’re a penetration tester, you’ve been there: that customer that certainly knows what they’re doing. The one that makes their stuff secure by the less-is-more concept.

In an assignment of all internet facing systems of this customer we had to dig deeper to find something. After extensive testing of their web applications, we weren’t happy enough and wanted more. Scanning the full perimeter was already done and didn’t present us any useful vulnerabilities. Time to go deeper!

Door |2024-02-19T05:19:30+00:00oktober 19, 2017|Article, Artikel, Engels, Nederlands|Reacties uitgeschakeld voor Harakiri – exploitation of a mail handler

A tale of a compliance kettle…

This is a story that took place during SHA2017, an international hacker camp in Zeewolde. If you want to get an impression of how awesome this event was, I suggest you read Chris van ‘t Hof’s article (in Dutch) or Jenny List’s personal review (in English).
 
Even though SHA2017 is a hacker camp, and thus has an anarchistic tendency to it, it doesn’t mean that there are no rules. These rules are generally speaking there because either the camp itself has to comply to external rules (like local laws and regulations with regards to noise and safety) or to keep things safe in general. One of these rules related to ‘open fire’ was worded on the SHA2017 wiki.

Door |2024-09-30T07:49:57+00:00oktober 12, 2017|Article, Artikel, Engels, Nederlands|Reacties uitgeschakeld voor A tale of a compliance kettle…

Botnet of Things

"Botnet of things" is de technologie achter DDOS-aanvallen. Met een DDOS-aanval kun je diensten gekoppeld aan het internet aanvallen zodat ze niet langer bereikbaar zijn voor klanten. Een dreiging die onze maatschappij angst inboezemt omdat we steeds afhankelijker worden van technologie. Een digitale wapenwedloop die zich door het mondiale karakter exponentieel snel ontwikkeld waardoor velen van ons moeite hebben om bij te blijven. Hoe kan een bedrijf zich op die digitale dreigingen voorbereiden?

Door |2024-07-25T13:51:54+00:00oktober 5, 2017|Artikel, Nederlands|Reacties uitgeschakeld voor Botnet of Things
Ga naar de bovenkant