As promised, I didn’t let the momentum die off. Releasing today v2016-04 with multiple ....
One more release to keep the momentum going. Included the last work with the different_* option in ....
I guess I didn’t keep my promise to push my OSSEC changes into the open source world as often ....
Been a while since I have pushed my latest OSSEC changes into the open source world. I will ....
Sudo has to be the most misused security tool out there. ....
A common trend among startups lately is the talk about culture: “We are focusing on our people ....
Setting up HTTPS is just one of the multiple things you have to do to secure your site. The S in HTTPS, alone, doesn’t really mean secure, it only means that the data is encrypted in “transit”. ....
You can not predict or control how an attacker will behave. You can not predict what tools ....
What comes to your mind when you think of security? Is it fences? Locks? Walls? Cages? ....
A common challenge for defenders (the ones responsible for protecting networks and companies), ....
The latest NSA surveillance and PRISM news (aka Snowden leak) seems to have gotten a lot of ....
I founded and managed an open source project (OSSEC) for many years. And one of the questions ....
We often complain that TCP/IP is not secure and was not designed with security in mind. And that’s ....
Do you see anything wrong with this piece of code? ....
I have been thinking and dealing a lot lately with comment spam. In the past, most ....
A few days ago we made public on the Sucuri blog that we were launching ....
If you are a C programmer, this is a must read article: ....
Interesting domain being used on TDS redirections to Fake AV: ....
I posted in the Sucuri Labs about fake jquery sites in the past, but it seems ....
Personal notes. I blog on a lot of different locations, but here I will share ....