Skip to content

Search for:

David Vassallo's Blog

If at first you don't succeed; call it version 1.0

Home
Nerd Notes
About

it-security

OSSEC event loss troubleshooting

Posted on December 21, 2014 by David Vassallo

There is a general consensus that OSSEC will lose events in the event that the main OSSEC server goes offline for whatever reason ( [1] , [2] ) - be it the service is stopped, a network disconnection, or anything in between. However, there doesn't seem to be much information on when exactly even loss can occur, for … Continue reading OSSEC event loss troubleshooting

Share this:

Click to share on Twitter (Opens in new window)
Click to share on Reddit (Opens in new window)
Click to share on Facebook (Opens in new window)
Click to share on LinkedIn (Opens in new window)
Click to share on Pinterest (Opens in new window)
More

Click to email this to a friend (Opens in new window)
Click to share on Tumblr (Opens in new window)
Click to share on Pocket (Opens in new window)
Click to print (Opens in new window)
Click to share on Telegram (Opens in new window)
Click to share on WhatsApp (Opens in new window)
Click to share on Skype (Opens in new window)

Like this:

Like Loading...

Posted in Open Source, Security, workTagged it-security, open source, opensource, Security1 Comment

Practical Reflected File Download and JSONP

Posted on November 2, 2014November 2, 2014 by David Vassallo

This week introduced us to a new web attack vector, which the researcher dubbed "Reflected File Download" [RFD] . It's a very interesting attack which has potential to do some severe damage, especially in social engineering contexts. Full details of the reflected file download attack can be found here: http://blog.spiderlabs.com/2014/10/reflected-file-download-the-white-paper.html While reading through the white … Continue reading Practical Reflected File Download and JSONP

Share this:

Click to share on Twitter (Opens in new window)
Click to share on Reddit (Opens in new window)
Click to share on Facebook (Opens in new window)
Click to share on LinkedIn (Opens in new window)
Click to share on Pinterest (Opens in new window)
More

Click to email this to a friend (Opens in new window)
Click to share on Tumblr (Opens in new window)
Click to share on Pocket (Opens in new window)
Click to print (Opens in new window)
Click to share on Telegram (Opens in new window)
Click to share on WhatsApp (Opens in new window)
Click to share on Skype (Opens in new window)

Like this:

Like Loading...

Posted in Scripting, SecurityTagged it-security, JSONP, RFD, Security2 Comments

Posts navigation

← Older posts

Newer posts →

Search for:

Like This Blog? Buy Me A Coffee!

Email Subscription

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 615 other followers

Email Address:

Follow David Vassallo's Blog on WordPress.com

David Vassallo's Blog

Follow Following
- David Vassallo's Blog
- Already have a WordPress.com account? Log in now.

Loading Comments...

You must be logged in to post a comment.

Send to Email Address Your Name Your Email Address

Cancel

Post was not sent - check your email addresses!

Email check failed, please try again

Sorry, your blog cannot share posts by email.

%d bloggers like this: