HowTo – Purple Serendipity

VirtualBox VMs: Moving to and running from external drives

written by Fabian

In a recent webinar someone said that it was impossible for him to set up the suggested lab environment because … More VirtualBox VMs: Moving to and running from external drives →

HowToInfosecProgrammingPython

Script to check VirusTotal for many files and folders

written by Fabian

Edit 09/04/2021: Clarified installation instructions by adding explanation on how to install the YAML module. Edit 13/03/2021: Corrected reference for … More Script to check VirusTotal for many files and folders →

Cloud SecurityHowToInfosec

Use AWS Security Token Service (STS) to let low-privileged user temporarily assume privileged role in other account

written by Fabian

Imagine one of your contractors usually does not need access to your AWS S3 buckets (or only access to buckets … More Use AWS Security Token Service (STS) to let low-privileged user temporarily assume privileged role in other account →

Batch ScriptingHowToProgramming

Script to set up port forwarding, start/stop & automatically SSH into headless VirtualBox VM

written by Fabian

Virtual machines are very useful not only on servers or in cloud environments, but also installed locally on a workstation … More Script to set up port forwarding, start/stop & automatically SSH into headless VirtualBox VM →

Cloud SecurityContainer SecurityHowToInfosec

“Stealing the environment” – Insecure password injection in scripts and containers via environment variables

written by Fabian

An “interesting” part when working with APIs or runtime environments like containers is of course credential management. Somehow you have … More “Stealing the environment” – Insecure password injection in scripts and containers via environment variables →

HowTo

Subnetting quick & easy

written by Fabian

It’s very useful to be able to quickly perform some subnetting when given an IP address with its CIDR – … More Subnetting quick & easy →

HowToInfosec

SRPs block malware, but what if things stop working?

written by Fabian

As I wrote in my last post on lateral movement, using AppLocker or Software Restriction Policies (SRPs) to avoid the … More SRPs block malware, but what if things stop working? →

HowTo

Life-saving Excel shortcuts

written by Fabian

Recently on Twitter someone asked security professionals which tools they use most for their day-to-day tasks. Someone said “Excel” and … More Life-saving Excel shortcuts →

HowToInfosec

Analyze Emotet and Trickbot with NetworkMiner and Suricata

written by Fabian

As I explained in the previous post, NetworkMiner and Suricata are a great combination for performing quick and straightforward network … More Analyze Emotet and Trickbot with NetworkMiner and Suricata →

HowToInfosec

Quick and easy setup for NetworkMiner and Suricata to perform network forensics

written by Fabian

Many people know Suricata as network intrusion detection (IDS) system, i.e. acting on live traffic; many people know NetworkMiner as … More Quick and easy setup for NetworkMiner and Suricata to perform network forensics →

Purple Serendipity

Mais les braves gens n'aiment pas que l'on suive une autre route qu'eux

Category: HowTo

VirtualBox VMs: Moving to and running from external drives

Script to check VirusTotal for many files and folders

Use AWS Security Token Service (STS) to let low-privileged user temporarily assume privileged role in other account

Script to set up port forwarding, start/stop & automatically SSH into headless VirtualBox VM

“Stealing the environment” – Insecure password injection in scripts and containers via environment variables

Subnetting quick & easy

SRPs block malware, but what if things stop working?

Life-saving Excel shortcuts

Analyze Emotet and Trickbot with NetworkMiner and Suricata

Quick and easy setup for NetworkMiner and Suricata to perform network forensics