Web Application Penetration Testing Using OWASP ZAP

Thanks to Jeremy Martin of Internet Warfare Center! Every website should go through an OWASP zap scan several times a year. Being free, there is no reason you shouldn’t try it against your own site (assuming you have permission).

Delete Browser History And Go To Jail For 20 Years

Sarbanes-Oxley Act : “Whoever knowingly alters, destroys, mutilates, conceals, covers up, falsifies, or makes a false entry in any record, document, or tangible object with the intent to impede, obstruct, or influence the investigation or proper administration of any matter within the jurisdiction of any department or agency of the United States or any case filed under […]

15 Second Password Hack, Mr. Robot Style – HAK5

Pilfering Passwords with the USB Rubber Ducky Can you social engineer your target into plugging in a USB drive? How about distracting ’em for the briefest of moments? 15 seconds of physical access and a USB Rubber Ducky is all it takes to swipe passwords from an unattended PC. In honor of the USB Rubber […]

Hardening AWS Environments And Automating Incident Response For AWS Compromises

Hardening AWS Environments And Automating Incident Response For AWS Compromises Incident Response procedures differ in the cloud versus when performed in traditional, on-premise, environments. The cloud offers the ability to respond to an incident by programmatically collecting evidence and quarantining instances but with this programmatic ability comes the risk of a compromised API key. The […]

H@ckin’ Ka Na Lang

What is #HKNLLipa2016? HKNL (Hacki’n… ka na lang) Lipa2016 is an event organized by Global Knowledge Philippines (GK) and Sophie’s IT Services (SitesPhil) to promote the information security practice here in Southern Luzon. GK is one of the two globally recognized IT security training centers based in the Philippines and the pioneer of the “What […]

Floods due to typhoon Ondoy(?)

First of all, I would like to extend my deepest sympathy to the ones who are mostly affected by the floods caused by the heavy downpour of Typhoon Ondoy. I know how it feels to lose a family member in an untimely fashion. I also know how it feels and it becomes easy that we […]

Mabuhay ka, Congressman-elect Manny Pacquiao!!!

I may be one of the few people who want Manny Pacquiao to be part of the Philippine political scene. Forums, boards and even websites have clamored that Pacquiao not touch the dirty world of politics.They say that Manny would just be eaten alive by the greed-filled system. However, I think otherwise.. I think that with what […]

Paalam Cory

Today, August 5, 2009, the first Philippine woman president is being laid to rest in Manila Memorial Park in Sucat, Paranaque. It took me this long to write about the said event because I wanted to write an article that is not biased (i.e. all good and not show the bad) towards the subject of […]

OSI model

“We still talk about the seven layers model, because it’s a convenient model for discussion, but that has absolutely zero to do with any real-life software engineering. In other words, it’s a way to talk about things, not to implement them. And that’s important. Specs are a basis for talking about things. But they are […]