News
14 November 2018
Cloudflare, how to do it right and don't reveal your real IP
The goal of this blogpost is to show what needs to be done to have a secure working setup, explain why all of the countermeasures are really necessary by demonstrating the attacks that they are mitigating, to not reveal your origin IP address.
13 July 2018
Malware trends in 2018- Ransomware left behind by mining viruses
This blog is about CoinHive. I will describe how it affects websites, how websites get infected and how to prevent it or how to get rid of it.
20 February 2018
Be kind to your local security researcher
As big fans of open source, we feel the urge to support the community and contribute to the projects we like. And because our code is ugly as hell, we try to do it at least by reporting bugs and security vulnerabilities.
20 February 2018
MS13-105: Oracle Outside In MDB Parsing Vulnerability – CVE-2013-5791
People sometimes ask how to know what exact vulnerability was patched in particular piece of closed source software. In this blog, we would like to describe one such example from the Microsoft security bulletin.
20 February 2018
Report from 30C3: Forget privacy online!
Chaos Communication Congress is the oldest hacker conference in the world and the largest of its kind in Europe. It brings current research in the field of security, networking and increasingly also politics and other topics related to “hacking".
8 February 2018
How to Order a Penetration Test – A Quick Guide
Although people working in the IT security industry may consider this question to be as trivial as "How to order a phone charger", for many, writing a purchase order for a penetration test can be like designing a nuclear power plant.