Latest Research

TrackBack Spam: Abuse and Prevention Contemporary blogs receive comments and TrackBacks, which result in cross-references between blogs. We conducted a longitudinal study of TrackBack spam, collecting and analyzing almost 10 million samples...

Readmore

XCS: cross channel scripting and its impact on web... We study the security of embedded web servers used in consumer electronic devices, such as security cameras and photo frames, and for IT infrastructure, such as wireless access points and lights-out management...

Readmore

Embedded Management Interfaces: Emerging Massive Insecurity Over the last few years, the number of devices that embed user-friendly management interfaces accessible from the network has drastically increased. These interfaces can be found on almost every kind of...

Readmore

Decaptcha: Breaking 75% of eBay Audio CAPTCHAs. CAPTCHA tests aim at preventing attackers from performing automatic registration. In this paper we show that our prototype Decaptcha is able to successfully break 75% of eBay audio captchas. We compare...

Readmore

Extending Anticipation Games with Location, Penalty... Over the last few years, attack graphs have became a well recognized tool to analyze and model complex network attack. The most advanced evolution of attack graphs, called anticipation games, is based...

Readmore

  • Prev
  • Next

Apsm: Apache Status Monitor

Posted on : 28-05-2008 | By : Elie Bursztein | In : Software

0

Apsm is a desktop application that gathers Apache status mod data to plot charts and compute statistics. Its goal is to help you analyze how the load of your HTTP servers evolves real time. It is written in Java so it should run on every OS.

Download it from Google Code

While fully functional, this is a very early release: I have spent only a day to code it. I will put more effort into it, if I see that it fulfill a need hence do not hesitate to provide your feedback :) As far as I know, this is the first software that use apache mod to make charts.

Here is some screenshot, If you want to see what it look like before using it:

Read Full Article

Code Ideas

Posted on : 19-03-2008 | By : Elie Bursztein | In : Software

0

This is a sort of code think tank. I put here all the code ideas – improvement that I haven’t time to do but wish I could. One day I might code them, of course if if you are interested by one of those ideas, I will be happy to discuss it with you.

RSS aggregator – re-seeder

Create a serveur side aggregator that fetch a list of rss feed and reseed them as aggregated feed. Gregarius seems a strong base to start but many many feature are missing. The most important are:

  1. Duplicate removal: when a new is reseed in multiple feed, it should be removed, or better an importance counter can be incremented
  2. Smart feed based on keyword/regexp should be implemented
  3. Tag browsing
  4. Post clustering to group near duplicate
  5. Related article

Windows HIDS

One security issue with high level interface such as the Windows GUI is that you are completely unaware of what is going on at the network level. Therefore the idea is to use the Windows Filtering Platform to gather low level information useful to know how the computer interact with the network. Here is a list of some information that appears usefull:

  • Which process send data to the network
  • Does the data sent are encrypted ?
  • Alert when a station join or leave the network (specially when dealing with a wifi network)
  • Who is your dhcp ?
  • Which computer share are available on network (windows, itune, osx)

Ideally the application will be displayed as a red/green dot on the status bar.

Read Full Article