How NAT traversal works — Figuring out firewalls
Guest Post: How to get through NATs and connect your devices directly to each other, no matter what’s standing between them.
Tag: security
How to: Installing an RPKI validator
[Updated] Step-by-step instructions to install RPKI validators required to validate ROAs.
DOA: Using RPKI to drive out bad traffic
DOA is a new proposal to improve on the RPKI model by providing clear, authenticated proof of the intent by address delegates.
The fragility of transient identifiers
Let’s talk about the ‘Unfortunate History of Transient Numeric Identifiers’.
How to: Detect and prevent common data exfiltration attacks
Guest Post: Mitigate for APT threats with these best practices for detecting and preventing data exfiltration attacks.
Threat hunting with Yara: The red pill approach
Guest Post: Learn how to combine Yara with other tools to have full control over the condition validation process.
DNSSEC algorithms for TLDs (and everyone else)
Guest Post: Has the time come to phase out 1,024-bit RSA from the DNSSEC ecosystem?
Threat hunting with Yara: Dealing with wildcard hexadecimal patterns
Guest Post: Learn how to use Yara’s native hexadecimal pattern definition features to create fast rules with fewer false positives and no alarming nested loops.
What’s going on with certificate revocation?
Does X.509 certificate revocation work as intended, or even work at all?
Threat hunting with Yara: Measuring distance between any three elements
Guest Post: Learn how to use Yara’s math module and min/max functions to measure distance between patterns.