Beginner's Guide To Creating A Ghost Powered Blog

Learn how to create your own blog using Ghost, an an open source WordPress alternative. My latest creation. A new course on Udemy. If you're new to blogging, or considering starting one, and don't want to have to learn WordPress, Ghost may be for you, and this course can help.…

Ghost 1.0 Released

It's here! Ghost Publishing Platform Version 1.0. On 27 July, 2017, John O'Nolan announced the release of Ghost Version 1.0. For those of you who haven't heard of Ghost, it is a Content Management System designed to make a pleasing interface for writing. It is open source, with…

New Free Course and Certification - KLCP

Offensive Security announced a new, free Kali Linux Certified Professional Course and Certification Have you been looking to learn how to Penetration Test? Muts and crew have announced a new, free course and certification called Kali Linux Certified Professional. The KLCP can be your stepping stone to a career in…

Using Fingerprints At Food Kiosks? There Are Risks.

Brian Krebs breaks story that Avanti, a self-service food kiosk vendor, was hacked. Avanti Markets, a vendor with "micro markets" in many corporate offices throughout the United States, has had a data breach believed to involve credit card and biometric data. See more from Brian's article. An interesting…

Nikto - The Web App Scanning Tool - It's Origin

One of my esteemed colleagues was familiar with the popular open source web application scanning tools, Nikto, but was unaware of the origin of the name. As I mentioned, Nikto is a popular web application scanning tool. It's built into Kali Linux, and there's a version for Windows called Wikto.…

How to Safely Check Suspicious Links

In case you weren't aware of it, your computer can become infected with malware by visiting an infected site, even if you don't click on anything upon hitting the site. It is called a drive by attack. If you want to check out a link in an email or on…

Upgrading Ghost

Here are a few things I learned when upgrading my Ghost server. I tried first simply installing with the instructions provided on ghosts site. I started troubleshooting, and it went downhill fast, so I restored the server from backup so I could get a clean start. I found that the…

SOREBRECT Fileless Ransomware Evades Antivirus

Ransomware uses PsExec to infect target systems Researchers at Trend Micro have identified some new ransomware that can bypass antivirus because it is fileless and relies on injecting code into a legitimate system process. The Hacker News has an article about the malware. According to the article, Sorebrect seems to…

Find Vulnerabilities In Web Applications With BurpSmartBuster

Patrick, @pathetiq, co-founder of Hackfest.ca, has an update to a cool tool he created called BurpSmartBuster. The update will be announced at BlackHat USA, scheduled for 26 and 27 July, 2017. I just learned of the tools existence from one of Patrick's tweets. Here is a DerbyCon presentation from…

Digital Ocean's New Free Firewall

Digital Ocean now offers free firewall for customers Many cloud providers offer free or paid firewalls to help customers protect their virtual infrastructures. Now Digital Ocean does too. There are two relevant posts on Digital Ocean that will tell you what you want to know about them, and will walk…