Security | eNik

Push Synology syslogs to Splunk

Posted by admin on Dec 19, 2011 in Featured, Hacks 4 Noobs, Security, Software | 0 comments

This article walks you through the steps that are needed to get the Log messages from your Synology NAS out and into a Splunk instance. For the sake of simplicity I assume in this example that the IP address of the Synology NAS is 192.168.10.99 and that the IP of the Server running is 192.168.10.200 1) Prepare Splunk First let’s prepare Splunk to receive syslog messages Click on Manager Select “Data...

FinFisher beats Carrier IQ

Posted by admin on Dec 2, 2011 in Featured, Security | 0 comments

The FinFisher Trojan is government spyware that is installed via a phony iTunes update. Your iPhone could be spying on you, according to the latest documents from Wikileaks, called the Spyfiles… (Via CultOfMac: If You Thought Carrier IQ Scandal Was Bad, Wait Till You See Latest...

Private Eye – Check who’s phoning home

Posted by admin on Oct 13, 2011 in App of the Week, Apple, Featured, Security | 0 comments

There are a miryad of possibilities to check what connections are active on your Mac. Rubbernet, Little Snitch and Dtrace (for the unafraid) are only two of them… Now there is a new small and free tool called Private Eye that sort of formats the Dtrace output in a nice way, so you can verify strange outgoing or incoming connections. You can download it here – everyone should have this on his...

NetworkMiner packet analyzer – Version 1.1 available

Posted by admin on Oct 10, 2011 in Featured, Security | 0 comments

NetworkMiner is a free Network Forensic Analysis Tool (NFAT) for Windows that can detect the OS, hostname and open ports of network hosts through packet sniffing or by parsing a PCAP file. (Via Sourceforge)

Websecurify Website Security Testing Framework

Posted by admin on Oct 10, 2011 in Featured, Security | 0 comments

… Websecurify is an open source framework for testing web application, the platform is designed to perform automated as well as manual vulnerability tests. The built-in vulnerability scanner and analyzing engine are capable of automatically detecting many types of web application vulnerabilities as you launch a penetration test. List of automatically detected vulnerabilities include: SQL Injection Local and Remote File Include Cross-site Scripting Cross-site Request Forgery Information Disclosure Problems Session Security...