An informed and independent review of site security. This security scan is useful for fulfilling industry and government requirements such as ISO/IEC 27000, PCI DSS, HIPAA, NIST, GDPR, or SOC 2 for example. The scan is targeted at public facing websites however we can expand the scope as required. Such as performing code review, serverContinue reading “Penetration Testing and Website Security Report”
Free Nonprofit Website Security Scan & Report
We are currently offering a free website security scan and report for US based nonprofits. It can be used once a year for a valid 501(c)(3). We will schedule a time, it will be passive, and not cause any harm. This will give your team an informed independent review of site status. The report consistsContinue reading “Free Nonprofit Website Security Scan & Report”
Creating Ubuntu Malware with Chain Reactor for Threat Modeling
In the last few years I’ve had the opportunity to stand up many small internet facing servers for banks and insurance companies as a contractor. It was interesting to learn about their compliance issues. In particular I enjoyed independent security reviews done on my servers. After a while it felt like I was testing theContinue reading “Creating Ubuntu Malware with Chain Reactor for Threat Modeling”
The server side purple team.
We focus on offense, defense, and performance. Do you need assistance with updates or exploit remediation? Secure and stable hosting solutions? Government or industry compliance programs? For the past 15 years we have provided hosting solutions in New England for businesses of all sizes. Contact us anytime for a teleconference to discuss project requirements. support@chadbourne.consulting.Continue reading “The server side purple team.”
ClamAV on MacOS via pkgsrc
I desired to be able to do an anti-virus scan on my MacBook. After trying and paying for several large proprietary alternatives and being dissatisfied I decided to try and use ClamAV like I do on Gnu/Linux. At the time of this writing there is a proprietary GUI using ClamAV in the backend but thatContinue reading “ClamAV on MacOS via pkgsrc”
Convert an XML feed to a new Mastodon status.
I’ve been greatly enjoying a social media alternative called Mastodon. For fun I’ve started on a PHP script to convert XML, RSS, and ATOM to a new Mastodon status. While there are multiple libraries that can do this such as simplepie, it seemed like a good exercise to write one from scratch. I currently haveContinue reading “Convert an XML feed to a new Mastodon status.”
WhereAmI? Situational Awareness with HostReconX.
After stumbling upon the useful HostRecon, I hope to start a conversation on a possible non-Windows variant called HostReconX, targeted at macOS and Ubuntu. It is a shell script that gives the user common environmental information. I have merely begun an outline of the code and have only tested on my personal laptop. As timeContinue reading “WhereAmI? Situational Awareness with HostReconX.”
A Great User Group: Boston Linux & Unix
This is an excellent example of a top notch computer user group. Check out The Boston Linux & Unix User Group. They have several email lists and meet once a month in or around MIT. The members are diverse and you would be surprised at the talent lurking. I have enjoyed their “discuss” list forContinue reading “A Great User Group: Boston Linux & Unix”
