An informed and independent review of site security. This security scan is useful for fulfilling industry and government requirements such as ISO/IEC 27000, PCI DSS, HIPAA, NIST, GDPR, or SOC 2. The scan is targeted at public facing websites however we can expand the scope as required. Such as performing code review, server configuration, API … Continue reading Penetration Testing and Website Security Report
Free Nonprofit Website Security Scan & Report
We are currently offering a free website security scan and report for US based nonprofits. It can be used once a year for a valid 501(c)(3). We will schedule a time, it will be passive, and not cause any harm. This will give your team an informed independent review of site status. The report consists … Continue reading Free Nonprofit Website Security Scan & Report
Creating Ubuntu Malware with Chain Reactor for Threat Modeling
In the last few years I’ve had the opportunity to stand up many small internet facing servers for banks and insurance companies as a contractor. It was interesting to learn about their compliance issues. In particular I enjoyed independent security reviews done on my servers. After a while it felt like I was testing the … Continue reading Creating Ubuntu Malware with Chain Reactor for Threat Modeling
The server side purple team.
We focus on offense, defense, and performance. Do you need assistance with updates or exploit remediation? Secure and stable hosting solutions? Government or industry compliance programs? For the past 15 years we have provided hosting solutions for businesses of all sizes. Contact us anytime for a teleconference to discuss project requirements. support@chadbourne.consulting. A partial list … Continue reading The server side purple team.
ClamAV on MacOS via pkgsrc
I desired to be able to do an anti-virus scan on my MacBook. After trying and paying for several large proprietary alternatives and being dissatisfied I decided to try and use ClamAV like I do on Gnu/Linux. At the time of this writing there is a proprietary GUI using ClamAV in the backend but that … Continue reading ClamAV on MacOS via pkgsrc
Convert an XML feed to a new Mastodon status.
I've been greatly enjoying a social media alternative called Mastodon. For fun I've started on a PHP script to convert XML, RSS, and ATOM to a new Mastodon status. While there are multiple libraries that can do this such as simplepie, it seemed like a good exercise to write one from scratch. I currently have … Continue reading Convert an XML feed to a new Mastodon status.
WhereAmI? Situational Awareness with HostReconX.
After stumbling upon the useful HostRecon, I hope to start a conversation on a possible non-Windows variant called HostReconX, targeted at macOS and Ubuntu. It is a shell script that gives the user common environmental information. I have merely begun an outline of the code and have only tested on my personal laptop. As time … Continue reading WhereAmI? Situational Awareness with HostReconX.
