Posts Tagged ‘windows’

Hashode – A Python script to encode and decode data October 4th, 2012

Part of my role requires me to review log files, these log files often contain encoded data. Whilst there are many 3rd party applications available for Windows to encode or decode data, I always had a small fear that these 3rd party applications may be ‘phoning home’. So a while ago I decided to write [...]

Tips for assessing Citrix published applications April 16th, 2012

Over the years as both a Citrix engineer and an Infosec professional I have had to harden or assess a large number of published Citrix applications. Whilst I obviously cannot go into the specifics of bespoke applications etc, I wanted to try and provide some tips on how to breakout of a bespoke published application. [...]

Left the back door unlocked? January 14th, 2011

Business X is a company that takes Infosec seriously. They’ve deployed their hardened web application and database servers over multi tiered DMZ’s, restricting the addresses and ports as required. The servers themselves have the latest patches installed, minimal services enabled, minimal accounts with complex passwords. In addition they’ve deployed IPS at the entry points into [...]