1. On the Wire: DNS Tunnels


  2. Brim desktop and ArchLinux


  3. On the wire: Tunnels

    This blog will provide an introduction into the SSH protocol handshake and how it pertains to the identification and detection of SSH tunnels. Then we will introduce a method to fingerprint individual SSH clients and servers and ultimately end with detection of SSH tunneling using both the standalone python version and the zeek implementation of packetStrider. …


  4. Current Workflow


  5. Playing With Nushell

    git staoverflo— title: “Playing with Nushell” date: 2021-02-11 16:32:00 categories: [nushell, rust, command line-fu] tags: [nushell, command line ninjitsu, analysis] — …


  6. Pcap Challenge: Mr. Natural

    For the past few month’s, Internet Storm Center (ISC) handler Brad Duncan from malware-traffic-analysis.net puts out a PCAP challenge (quiz) for the community to solve. The latest challenge is called Mr. Natural. Brad provides a break down of the environment. …


  7. Gitea on Ubuntu

    Through collaboration the need for a private/self-hosted GIT installation arose. After some looking around, I ended up choosing Gitea as it aims to be a painless way for setting up a self-hosted Git service. It is written in Go and distributed as a binary that is cross-platform. I came across several guides to ease the installation process and ended up using some bits of each and some additions of my own. The final product looks like: …


  8. some() , filter() , includes() in javascript

    I have begun learning javascript. This skill will prove useful in merging with my security experience. Like almost everyone, you learn about variables, working with objects and arrays. This will focus on the latter. The task was multifaceted, but the first task was to create a function that counts the correct answers in the submissions array. This was straight forward enough. …