Fabian – Blog

Posted in Culture, Germany, Japan, Mexico, South Korea

How fast does a society become individualistic?

Fabian
posted on October 19, 2020October 19, 2020
No Comment

According to the “rice farming theory“, societies that traditionally sustained on rice were collectivist societies, while wheat farming gave rise to individualistic societies. The idea

Posted in Cloud Security, Infosec

Is “the cloud” secure?

Fabian
posted on October 10, 2020October 15, 2020
No Comment

Yes, cloud computing is not a new thing. Yes, it has been written many times before if the cloud is secure or not. Already in 2009, the European Union Agency for Cybersecurity (Enisa) published a

Posted in Attribution, Infosec

Finding & Attributing Malicious Command & Control Servers

Fabian
posted on September 30, 2020October 11, 2020
No Comment

In one of my last posts, I wrote about attribution in cybersecurity, i.e. ways to find out who was behind an attack. One particular class of attackers are so-called APTs: Advanced Persistent Threats.

Posted in Cloud Security, Infosec

Differences in cloud security (Alibaba, Amazon, Google, IBM, Microsoft)

Fabian
posted on September 19, 2020September 28, 2020
No Comment

I recently had a look at the security assessments of different well-known cloud providers and found some interesting discrepancies. It shows at least four things in my opinion: There are indeed

Posted in Attribution, Infosec

Who the hæck?Attribution in cybersecurity

Fabian
posted on September 16, 2020September 17, 2020
No Comment

While we are getting used to hearing news on a daily basis about hacking attacks, much less do we read details on who is responsible. The reason is clear: In cyberspace, there are many ways to cover

Posted in HowTo, Infosec

SRPs block malware, but what if things stop working?

Fabian
posted on September 4, 2020September 5, 2020
No Comment

As I wrote in my last post on lateral movement, using AppLocker or Software Restriction Policies (SRPs) to avoid the execution of unknown or malicious software is good practice. While SRPs are older,

Posted in Infosec

Hello, somebody there? Or: The difficulty of detecting lateral movement

Fabian
posted on September 2, 2020September 5, 2020
No Comment

Lateral Movement is a key technique for attackers: Once they entered your infrastructure, the next step is to look around and move horizontally (i.e. to other, possibly more valuable machines and

Posted in Infosec

Which layer for encryption? Which for VPNs?

As more people work from home, VPNs are in peak season. Recently I discussed with a network engineer the advantages and disadvantages of IPsec VPNs versus TLS-based VPNs. With this discussion in mind

Posted in HowTo

Life-saving Excel shortcuts

Recently on Twitter someone asked security professionals which tools they use most for their day-to-day tasks. Someone said “Excel” and I found this very accurate. Excel is so versatile

Posted in HowTo, Infosec

Analyze Emotet and Trickbot with NetworkMiner and Suricata

As I explained in the previous post, NetworkMiner and Suricata are a great combination for performing quick and straightforward network forensics on captured traffic. Overview NetworkMiner provides a