Freigeben über


Robert Hensing's Blog

Software Security . . . and stuff.

Apple offering free attack surface increase to Windows users.

This is hugely irresponsible of Apple IMHO: https://blogs.zdnet.com/Bott/?p=405&tag=nl.e622 As...

Author: rhensing Date: 03/25/2008

The web is broken . . .

A friend of mine made a comment to me the other day that said exactly that - and now we have the...

Author: rhensing Date: 03/20/2008

Mass SQL injection coming to an IIS + ASP server near you . . .

My friend Neil has a pretty good post on the mass SQL injection stuff that was reported in the press...

Author: rhensing Date: 03/14/2008

I'm closing out CanSecWest 2008?

Well not quite - but I am the second to last speaker on the last day (Friday) -...

Author: rhensing Date: 03/12/2008

Walmart drops Linux PCs from stores

"This really wasn't what our customers were looking for," said Wal-Mart Stores Inc. spokeswoman...

Author: rhensing Date: 03/11/2008

From China with love . . .

So last week was a VERY interesting week. First off we had some dude going public with information...

Author: rhensing Date: 03/10/2008

Jonathan Morrison's kernel blog & LOST

So my friend Jonathan who is one of my hard-core kernel go to guys has decided to dip his toe into...

Author: rhensing Date: 03/05/2008

Hypervisor based rootkit detection?

Time marches on . . . https://northsecuritylabs.com/

Author: rhensing Date: 02/25/2008

The fragility of the Internets - as demonstrated by Pakistan / Youtube

I love how fragile the Internet really is. This is demonstrated from time to time and when it is -...

Author: rhensing Date: 02/25/2008

Practical application of the concept behind photon sails / laser elevators

Hilarious: https://blag.xkcd.com/2008/02/15/the-laser-elevator/

Author: rhensing Date: 02/25/2008

Cold boot attacks on encryption keys

UPDATE 2/27/2008: Douglas MacIver wrote an excellent and very authoritative blog post here on this...

Author: rhensing Date: 02/25/2008

SWI Defense in the news

My boss is apparently allowed to speak to the press. :)...

Author: rhensing Date: 02/21/2008

Asus / Apple / Wii pwnage & The press starts to wonder if maybe it's time to consider 3rd party apps dangerous?

Asus Eee PC owned out of the box (hint runs Linux): https://www.risesecurity.org/blog/entry/6/ Yet...

Author: rhensing Date: 02/14/2008

SecureWorks / Team Cymru solve the mystery of the Mega-D Trojan

Joe Stewart is the man . . . I have a ton of respect for him and everyone at Team Cymru. They teamed...

Author: rhensing Date: 02/13/2008

New measure of code quality

https://www.veracode.com/blog/?p=77Hilarious . . . I can finally explain what my team does to my less...

Author: rhensing Date: 02/05/2008

The Stig

I would not be surprised at all if it were Hamilton - but alas - given his hectic travel schedule...

Author: rhensing Date: 02/05/2008

Massive Linux / Apache hacks spewing forth browser based malware

And NO one knows how it's being done? https://www.linux.com/feature/125548 Pure insanity . . . how...

Author: rhensing Date: 01/24/2008

GMER discovers a new MBR based rootkit in the wild . . .

EDITED: 1/10/2008 to remove information about possibly using ntbtlog.txt to detect the rootkit. The...

Author: rhensing Date: 01/10/2008

Bill's last day . . .

This video is just all sorts of awesome:...

Author: rhensing Date: 01/07/2008

OSX vs. Vista security

XP + Vista vulns vs. OSX vulns for 2007. https://blogs.zdnet.com/security/?p=758 We had a good year -...

Author: rhensing Date: 12/18/2007

Notable changes in Vista SP1

https://technet2.microsoft.com/WindowsVista/en/library/b984ce70-701b-4565-868e-51d1ba47555d1033.mspx?...

Author: rhensing Date: 12/12/2007

Pwning Second Life users via QuickTime

Walk by a malicious object in Second Life - get 0wn3d: https://www.securityevaluators.com/sl/...

Author: rhensing Date: 12/10/2007

Fly with the Blue Angels?

Get pwn3d: https://alt.coxnewsweb.com/ajc/swf/blueangels/blueangels.swf Make sure you watch all the...

Author: rhensing Date: 12/07/2007

CNet 3 part series on Securing Microsoft (complete list of articles)

Here are the URL's for the 3 part series on 'Securing Microsoft' which is a pretty good behind the...

Author: rhensing Date: 12/07/2007

Patches . . .

Story time. So a couple years ago, because I have horses, someone sent me a video of a couple good...

Author: rhensing Date: 12/07/2007

How your CxO will get owned next year . . .

In a recent blog I explained how your Mom was going to get owned next year - now it's time to dish...

Author: rhensing Date: 12/03/2007

The Firefox security myth . . . busted.

Much like the Apple security myth and the Oracle security myth - the numbers just aren't there to...

Author: rhensing Date: 12/03/2007

CNet 3-part series on securing Microsoft.

Ina Fried is doing a write-up on my organization and so far part 1 was pretty...

Author: rhensing Date: 12/03/2007

How your mom will get owned next year . . .

https://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9049269&in...

Author: rhensing Date: 11/28/2007

Geekonomics?

Looks like an interestingb read: https://www.geekonomicsbook.com/ If you check out his blog it looks...

Author: rhensing Date: 11/27/2007

Is your Mac laughing at you?

Very interesting blog post on OSX's coming of age:...

Author: rhensing Date: 11/16/2007

Cisco Telepresence Magic

This is all kinds of awesome: https://www.youtube.com/watch?v=rcfNC_x0VvE

Author: rhensing Date: 11/16/2007

The second coming of Zune . . .

Zuneinites...

Author: rhensing Date: 11/12/2007

Overclocking the new 45nm Intel chips to 4Ghz?

Fascinating article . . . I used to build overclocked systems all the time but haven't really felt...

Author: rhensing Date: 11/12/2007

Hushmail - not so quiet after all!

In a previous life I did consulting for various law enfrocement agencies teaching them about how the...

Author: rhensing Date: 11/09/2007

Click-through cloaking (coming to a hacked site near you).

So yesterday I became aware of a web site that had been compromised and that was employing a concept...

Author: rhensing Date: 11/08/2007

Apple patches 7 more QuickTime vulns . . .

Unbelievable . . . or sadly - all too believable . . . Apple patches 7 more QT vulns:...

Author: rhensing Date: 11/06/2007

Happy Birthday Vista!!!

It was one year ago today (November 8th, 2006) that my favorite operating system officially released...

Author: rhensing Date: 11/06/2007

US-CERT weekly vulnerability summary, Vista, the meaning of life . . .

This URL came across one of my RSS feeds today so I had a quick look:...

Author: rhensing Date: 11/05/2007

Taiwan vs. China (he said / she said?)

Taiwan talks about the (no longer secret) Chinese hackers conducting espionage seemingly all over...

Author: rhensing Date: 11/04/2007

I make it me?

Zune acid trip:...

Author: rhensing Date: 11/02/2007

<Previous Next>