Some time ago I talked about BitLocker forensics and the decryption of BitLocker encrypted volumes. As a result, I received a few questions and a request regarding TrueCrypt encrypted volumes. Encryption, in general, is quite the challenge…
Recommended blocklists for pfBlocker (pfSense)
It's no secret that I am a big fan of pfSense. pfSense is a truly amazing product, it gives everyone access to a high-quality firewall product for free. With the right packages and the right…
Recommended anti spam DNS blacklists
I recently checked a server where the client had problems receiving e-mail. Checking the spam filter revealed that the client was using 54 DNS blacklists to keep out the spam. As a result, the server…
How to prevent ransomware
Ransomware attacks are still on the rise and will continue to be as long as victims keep paying ransoms. A few years ago, ransomware only blocked access to your system. These days ransomware actually encrypts…
Doxware the next step in evolution
It seems like yesterday that the only malware that existed were Adware and Spyware. Spyware was bad, in the worst case scenario it contained a keylogger that captured your login credentials which in turn were…
Disable SMB1 today
Ned Pyle published a good read on technet yesterday. His plea to disable SMB1 is a great example of how old protocols that just won't die are creating vulnerabilities that shouldn't exist. SMB1 is nearly…