Sigh. So I know I have made promises before, but this time its a new years resolution(if that means anything). Yes, I plan to be posting more frequently. I have already scheduled deadlines in my calendar, so that should help me keep on track. In addition to the reminders, I have also put together a …
Author Archives: Duncan Keir
Update: posts will be coming more frequently in the future
My, it has been a long time since I posted last. So to full you in quick, I contributed to the book mentioned in my last post, and have received my signed copy with my name printed in the contributions. I hope I will be contributing to more books in the future. So a lot …
Continue reading “Update: posts will be coming more frequently in the future”
ITWeb security summit 2013
Hello everyone, I was lucky enough to be able to go to day 2 of ITWebs security summit. I have always wanted to go and check it out, and so this year was my lucky year. I started off day two by browsing the exhibition, checking out various things on show, before heading off to …
ZaCon IV
ZaCon 2012 was, as always, well worth the attendance. The organisers put together a schedule with presenters from all walks of the hacker domain, ranging from android vulnerabilities to physical security and hardware hacking. Of particular interest to me, where the presentations on game hacking, physical security, android penetration testing and HTML 5 exploits. Video …
Proof reading
So I have been proof reading for Hakin9 magazine for a while now, and today a great opportunity arose in that area. William Stallings has put together a new edition of his book Cryptography and network security, and I have been approached to proof read a chapter of it. As a result, I will be …
HTTPS security
HTTPS is a secure layering of the HTTP protocol used for communication over a computer network, most notably used on the internet. It achieves this security by using the SSL/TLS protocol, which is the standard as far as securing web applications go. In particular, HTTPS is used by banks, social networks, live streaming services, …
Exams
Hi readers, So I have been lax in my posts lately, but this has been because I have been preparing for exams(Which I am now writing). But be assured that as soon as exams are done, the posts shall commence. Thank you for understanding
Session riding
I decided to make this post about web application session riding, known more formally as cross site request forgery, following a presentation about javascript malware done at one of the ISG Durban meetings. There are many ways in which a web application can be designed insecure, and much more ways in which to exploit them. …
First post, ZaCon III report back
I have finally decided to get my act together and begin posting on my blog. Albeit still in need of a great deal of design work, I will make this post and make good on design promises soon. So to kick off the blog, I will report back on the ZaCon III InfoSec conference (www.zacon.org.za) …