Security Headlines curl Podcast special

Security Headlines curl Podcast special Summary: In this episode of Security Headlines, we jump into curl with its founder and maintainer Daniel Stenberg. We talk security, CI systems, creation of curl, Fuzzing, IRC bots and a lot more! Relax, Tune in and enjoy this episode of Security Headlines: https://anchor.fm/firo-solutions/episodes/Curl-special-with-Daniel-Stenberg-ejqn0g Few software developers never even get near to having one of their projects being picked up by a larger community.
Read more…

FreeNas Podcast special

“To start, you just need an idea: Skills are not important because you will learn them” – Olivier Cochard-Labbé Summary: In this episode, we are all about FreeNas, the world’s largest NAS system, running FreeBSD as its base. The founder of FreeNas Olivier joins us, walking us throw how FreeNas started and how the system has grown since its start in 2005. The conversation takes us through the jungle of FreeNas and we end up landing in Netflix’s land of FreeBSD adoption and Olivier’s latest project the BSD router project.
Read more…

Security Headlines bubblewrap podcast special

Security Headlines bubblewrap podcast special In modern stacks, a large chunk of applications run in container environments such as docker and systemd-nspawn. However, these applications are not built for security. The security community has proven it again and again that privilege escalation attacks are very serious with attacks such as Dirty Cow and CVE-2016-3135. A way to tackle the problems of running applications with a low privilege user without
Read more…

Security headlines Tarsnap Special with Colin Percival

Security headlines Tarsnap Special with Colin Percival Tarsnap is a backup service running with the slogan “Online backups for the truly paranoid”. The service has well earned its slogan as a secure backup option. Created in 2006 by at the time FreeBSD’s security officer Dr. Colin Percival, who was responsible for FreeBSD’s security advisory. Colin is not only a successful entrepreneur but also a dedicated FreeBSD user. After dealing with the pain of running Tarsnap for himself for a while he decided
Read more…

Security Headlines dpaste Podcast special

Security Headlines dpaste Podcast special In this episode of Security Headlines we deep dive into the pastebin site dpaste.com with its founder, the Django veteran Paul Bissex. Dpaste is a pastebin service created in 2006 as Paul’s first Django project. The website has been running stable ever since, growing more and more as time goes by resulting in being Django’s default paste service. Paul learned computer programming by copying programs from computer
Read more…

Klondike on Security Headlines Podcast

Security headlines Podcast with Klondike Security Headlines is a podcast about the latest security vulnerabilities with in the cyber security field. So if your interested about the latest security holes nomather if you are a tech savy penetration tester, a devops person, a programmer or just generally interested in the latest technology security news. Security headlines is here for you! In this episode we interview Francisco “Klondike” Blas Izquierdo Riera who is
Read more…

Super hero Rust fuzzing

Super Hero Rust Fuzzing Summary: A guide to finding flaws, 0days and bugs in your rust code using fuzzing with code samples. This article shows you how to fuzz rust code with afl, hongfuzz and libfuzzer. Rust is a beautiful language but that doesnt mean you cant break things by poking at them. Rust kryptonite Rust is a memory safe language, but safety can also be disabled and unsafe code can be created by using the “unsafe” function.
Read more…

What to do when your website gets hacked?

What to do when your website gets hacked? Your website is your online business, one of the first interactions your customers will get from you, your virtual brand awareness and for a lot of people their bread and butter. Much like a owning a house, investing in a security is a great thing! You want to be able to have fences that bounce of intruders in cyberspace. After spending years in the IT Security sector we could see
Read more…

Building Vulnerability Explorer

Building our Vulnerability Explorer We wanted to make a love child between a blockchain block explorer and our api. In order to demostrate the true power of our api :) We have been using Bitcoin for a couple of years now and the true power of a block explorer in order to view transactions with a fancy interface is also pretty nice. The result is live and can be viewed at:
Read more…

Firo Solutions comes to Slack

We are live on slack A year ago we created a slack bot but we where never happy with it. So we spent some time in the workshop and created a new one, as a very lightway version of our web interface. We also have an irc bot, but people can make whatever bot they want with our api. The api is really becomming better and better and happily runs vulns.
Read more…