Threat hunting with Yara: The red pill approach
Guest Post: Learn how to combine Yara with other tools to have full control over the condition validation process.
Tag: security
DNSSEC algorithms for TLDs (and everyone else)
Guest Post: Has the time come to phase out 1,024-bit RSA from the DNSSEC ecosystem?
Threat hunting with Yara: Dealing with wildcard hexadecimal patterns
Guest Post: Learn how to use Yara’s native hexadecimal pattern definition features to create fast rules with fewer false positives and no alarming nested loops.
What’s going on with certificate revocation?
Does X.509 certificate revocation work as intended, or even work at all?
Threat hunting with Yara: Measuring distance between any three elements
Guest Post: Learn how to use Yara’s math module and min/max functions to measure distance between patterns.
Threat hunting with Yara: The three body problem
Guest Post: Get to know how to use Yara with real-life research problems — detecting code evolution and shellcodes.
Resurrection of injection attacks
Guest Post: DNS transparency is a gaping hole in Internet security.
Authentication and authorization using SSO
Guest Post: How to use single sign-on to benefit technology selection and deployment.
Securing an RDAP service with OpenID Connect and Keycloak
Guest Post: How integration with OpenID Connect secured the RDAP service of ccTLD .it.
Why are authentication and authorization so difficult?
Guest Post: Where to begin when you’re tasked with selecting a strong authentication solution for your organization.