Ferret: Automatically finding RFC compliance bugs in DNS nameservers
Guest Post: New open-source tool identifies 30 unique bugs across popular DNS implementations like Bind, Knot, NSD, and PowerDNS.
Tag: security
OpenLI: An open-source alternative for meeting Lawful Interception requirements
Guest Post: OpenLI is the world’s first open-source Lawful Interception software solution.
Stalloris: RPKI downgrade attack
Guest Post: Exploiting routing decisions made in BGP when networks cannot retrieve RPKI information from publication points.
How IoT devices can endanger your IPv6 privacy
Guest Post: A single Internet connected device employing EUI-64 can enable tracking of other devices, even if all other devices use privacy mechanisms such as IPv6 privacy extensions and the ISP employs prefix rotation.
RFC 9099 — Operational security considerations for IPv6 networks
Guest Post: Get to know RFC 9099, which analyses the operational security issues associated with deploying IPv6.
Suspicious traffic alerts released to DASH
A new feature in DASH offers configurable triggered alerts as email messages.
Wireshark’s little known Snort post-dissector
Guest Post: Did you know you can use Wireshark to find which specific packet triggered a Snort rule within a few seconds?
Register now for the Network and Information Security Workshop, Singapore
This face-to-face APNIC Academy workshop in Singapore will examine best practices to protect data and assets from potential attacks or abuse.
Bypassing CDN WAFs with alternate domain routing
Guest Post: How to mitigate an attack that can bypass security features of shared CDNs.
Open DNS resolvers, from bad to worse
Guest Post: 80% of DDoS attacks can be reduced by patching 20% of open DNS resolvers.