Musings on Information Security

Updates and Notable comments :

noreply@blogger.com (Thierry Zoller) — Thu, 17 May 2012 11:23:00 +0000

Updated Posts : The Post "Attacker Classes and Pyramid " has been updated to the third iteration. The post was updated in terms of coherency but I also added my OWASP BENELUX presentation entitled...

Security news : http://blog.zoller.lu

PCI Compliance, Security in isolated System and Parking Tellers (2nd)

noreply@blogger.com (Thierry Zoller) — Sat, 05 May 2012 13:47:00 +0000

Following up on my blog post a few months ago entitled "PCI compliance, Security in isolated systems and Parking Tellers Part 1" - I took a brief look the other day at another Ticket issued by a...

Security news : http://blog.zoller.lu

CVSS - Common Vulnerability Scoring System - a critique [ Part1 ]

noreply@blogger.com (Thierry Zoller) — Sat, 24 Mar 2012 13:51:00 +0000

Ever since I started my career in information security I was both interested and intrigued by metrics applied to vulnerabilities (or metrics in general for that matter). CVSS...

Security news : http://blog.zoller.lu

"SSL Audit" - Updated release (SSL/TLS Scanner)

noreply@blogger.com (Thierry Zoller) — Tue, 27 Dec 2011 15:02:00 +0000

Preamble : During my research on TLS/SSL Compatibility across different Operation Systems and Browsers I created supporting tools for myself and later decided to release them for the public....

Security news : http://blog.zoller.lu

Final - SSL/TLS renegotiation explained (CVE-2009-3555)

noreply@blogger.com (Thierry Zoller) — Fri, 23 Dec 2011 12:19:00 +0000

Final release for my paper explaining the different attack vectors and impacts for (CVE-2009-3555) "TLS / SSL renegotiation vulnerability". Added comments and corrections by Alun Jones (Who I...

Security news : http://blog.zoller.lu

PCI compliance, Security in isolated systems and Parking Tellers (Part1)

noreply@blogger.com (Thierry Zoller) — Tue, 06 Dec 2011 19:13:00 +0000

A colleague of mine spotted the below while we were doing our expenses - The photograph below shows two separate receipts from two parking buildings that are not far away from each other in central...

Security news : http://blog.zoller.lu

Blog cleanup

noreply@blogger.com (Thierry Zoller) — Tue, 01 Nov 2011 12:57:00 +0000

As some regulars might have noticed I restructed this blog a bit trying to get rid of some clutter. At the same time I updated a few specific pages I wanted to point out : Vulnerability...

Security news : http://blog.zoller.lu

THC SSL DoS - vs - Per Design

noreply@blogger.com (Thierry Zoller) — Wed, 26 Oct 2011 18:41:00 +0000

Since this is a rather old topic with both sides having valid points I will keep this post short and sweet. I have had no time to measure of investigate in depth and I don't think I will find...

Security news : http://blog.zoller.lu

Attacker Classes and Pyramid (Version 3)

noreply@blogger.com (Thierry Zoller) — Tue, 18 Oct 2011 18:20:00 +0000

This is a living blog post I will update whenever I have time and new ideas. TOC Introduction Updates Attacker Classes Attacker Pyramid Q&A Introduction The other day I was brainstorming...

Security news : http://blog.zoller.lu

The BEAST summary - TLS, CBC, Countermeasures (Update 4)

noreply@blogger.com (Thierry Zoller) — Mon, 26 Sep 2011 14:18:00 +0000

Lots of good information floating on the internet on the Proof of Concept (dubbed 'BEAST) against TLS 1.0 by Juliano Rizzo and Thai Duong at the Ekoparty. This blog post will be continuously...

Security news : http://blog.zoller.lu

TLS/SSL hardening and compatibility Report 2011

noreply@blogger.com (Thierry Zoller) — Tue, 20 Sep 2011 15:21:00 +0000

This is a cross post from the G-SEC blog My professional and private commitments made it difficult to maintain a healthy blogging style, I am trying to get back to some blogging on a more regular...

Security news : http://blog.zoller.lu

What did PHP crypt() and Alzheimer have in common ?

noreply@blogger.com (Thierry Zoller) — Tue, 23 Aug 2011 18:47:00 +0000

I stumbled across this weird PHP bug in the crypt() implementation (version 5.3.7RC5) [1] The bug reporter states that : "If crypt() is executed with MD5 salts, the return value consists of...

Security news : http://blog.zoller.lu

Tools, Whitepapers, Talks

noreply@blogger.com (Thierry Zoller) — Mon, 01 Aug 2011 20:20:00 +0000

Talks / Lectures During my career I had the opportunity to present my thoughts and views on Information Security to numerous people and organizations, below is a list of conferences I had the...

Security news : http://blog.zoller.lu

CVE-2010-x+n - Loadlibrary/Getprocaddress roars its evil head in 2010

noreply@blogger.com (Thierry Zoller) — Sun, 22 Aug 2010 21:33:00 +0000

Subscribe to the RSS feed in case you are interested in updates After Acrossecurity, published an interesting vulnerability and HDmoore appears to have stumbled on the same issue, I decided to...

Security news : http://blog.zoller.lu

CVE-2010-2568 - LNK Code execution - Proof of concept (Update)

noreply@blogger.com (Thierry Zoller) — Sun, 18 Jul 2010 13:14:00 +0000

Subscribe to the RSS feed in case you are interested in updates Ivanlef0u released a POC for the exploit used in targeted attacks :http://ivanlef0u.nibbles.fr/repo/suckme.rar More...

Security news : http://blog.zoller.lu

Top 10 Vulnerability Researcher 2009

noreply@blogger.com (Thierry Zoller) — Wed, 17 Mar 2010 17:09:00 +0000

Subscribe to the RSS feed in case you are interested in updates Thanks @edisoar for the hint: IBM ISS collected information about the researches that discovered and published most...

Security news : http://blog.zoller.lu

Videos of IDF Nominees in "Excellence in Visual Art"

noreply@blogger.com (Thierry Zoller) — Tue, 02 Mar 2010 17:07:00 +0000

Subscribe to the RSS feed in case you are interested in updates The Independant Games Festival is taking place right now, the Indie games [1] below have been nominated in the category...

Security news : http://blog.zoller.lu

New Paper: SSL/TLS Hardening and Compatibility report 2010

noreply@blogger.com (Thierry Zoller) — Thu, 18 Feb 2010 15:23:00 +0000

Subscribe to the RSS feed in case you are interested in updates Copied from the post over at G-SEC: At last. What started as an "I need an overview of best practise in SSL/TLS configuration"...

Security news : http://blog.zoller.lu

SSL/TLS Audit - New tool

noreply@blogger.com (Thierry Zoller) — Wed, 17 Feb 2010 09:22:00 +0000

Subscribe to the RSS feed in case you are interested in updates Developed as part of G-SEC's investigation into the "Secure SSL/TLS configuration Report 2010" (to be published) we developed this...

Security news : http://blog.zoller.lu

TLS / SSLv3 renegotiation vulnerability explained - NEW update

noreply@blogger.com (Thierry Zoller) — Wed, 18 Nov 2009 14:16:00 +0000

Subscribe to the RSS feed in case you are interested in updates I updated the whitepaper "TLS / SSLv3 vulnerability explained" : Updated 18.11.2009 : Added SMTP over TLS attack scenario, added...

Security news : http://blog.zoller.lu

New SSLv3 / TLS vulnerability - MITM attacks possible

noreply@blogger.com (Thierry Zoller) — Thu, 05 Nov 2009 13:12:00 +0000

Subscribe to the RSS feed in case you are interested in updates In order to allow me to update in a more convenient manner, the latest updates will be added to the G-SEC blog only. Once the...

Security news : http://blog.zoller.lu

Computer Associates multiple products - RCE

noreply@blogger.com (Thierry Zoller) — Tue, 13 Oct 2009 14:59:00 +0000

Subscribe to the RSS feed in case you are interested in updates I released another advisory today, the affected products are from Computer Associates who I'd like to thank for the cooperation...

Security news : http://blog.zoller.lu

Derren Brown guessed the lottery numbers - afterwards

noreply@blogger.com (Thierry Zoller) — Sat, 12 Sep 2009 13:38:00 +0000

Subscribe to the RSS feed in case you are interested in updates Derren Brown, the NLP master and magician "predicted" the Lotterie numbers Live on TV and promised to tell on Friday how he...

Security news : http://blog.zoller.lu

You get what you pay for

noreply@blogger.com (Thierry Zoller) — Fri, 11 Sep 2009 15:31:00 +0000

Subscribe to the RSS feed in case you are interested in updates On a more non-technical note, I stumbled across this offer from a "renowed luxemburgish recruitment agency." I am not sure what part...

Security news : http://blog.zoller.lu

IIS 5&6 FTP vulnerability - information and tools (KB975191)

noreply@blogger.com (Thierry Zoller) — Wed, 02 Sep 2009 11:46:00 +0000

Subscribe to the RSS feed in case you are interested in updates I wrote a small summary and facts about the recent IIS5&6 FTP 0day, note that te vulnerable part of the code can be reached without...

Security news : http://blog.zoller.lu