Blog

Continuous Deployment with GitLab and Kubernetes

If you have a web application, with the appropriate Dockerfile, you can now go the next step and use GitLab to automatically deploy your application to a kubernetes cluster. Here is how...

Read more
OSINT - Simple tips #2 - Facebook

This second blog post on the OSINT field will talk about Facebook. Again, it is a really simple tip but very interesting.

Read more
Installing Linux Bash Shell (and Metasploit) on Windows 10

For years, there has been an OS war between Linux, Windows and macOS for dominance. Each side would vehemently defend their OS of choice and disregard any positive sides of their "opponents". Of course, each operating system has its benefits and drawbacks and it is not my job or place to say which is the best.

Read more
OSINT - Simple tips #1 - Linkedin

OSINT, for Open Source INTelligence, is the process of searching for, gathering and analyzing data found from public sources. The data are accessible without breaking into any systems (hacking, phishing, etc.). Sometimes, data are behind a paywall (it is necessary to pay a monthly subscription to have access to some specific data) but a lot are easily accessible with the right tricks.

Read more
MARk : Use built-in detectors

Now that you have a running MARk server, with data flowing in, you can use the provided algorithms to build your detection chain.

Read more
Getting started with MARk : create a PHP data injector

The Multi-Agent Ranking framework (MARk) aims to provide all the building blocks that are required to build large scale detection and ranking systems. For this blog post we will use docker and docker-compose to run a MARk server, then we will use PHP and composer to inject data in the framework.

Read more
Multi-Agent Ranking framework version 2 is out

This week we released a new major version of the Multi-Agent Ranking framework (MARk). This version brings two main changes:

Read more
Email (in)security

Sending emails relies mainly on SMTP, the Simple Mail Transfert Protocol. This protocol is actually quite old: the first traces date back from the 70's, and the first standardisation took place in 1982 (RFC 821). It is primarily a very simple and insecure protocol, although multiple additional protocols have developed to protect emails and avoid SPAM. In this blog post we review these different protection mechanisms.

Read more
Password guessing with Hydra

A password is like a "key" used to open a specific door or vault. In this vault, there can be different personal documents, pictures, banking information... It is obvious that a user wants its personal documents secure. If the "key", therefore the password, is easy to find, the vault can be as strong as you want, it will be easy to open it.

Read more
Install Volatility on Debian, Ubuntu & Mint

In this blog post we show how to install the latest (GIT) version of Volatility memory forensics framework on Debian, Ubuntu or Mint.

Read more
Compute code coverage for a multi-module maven project with Jacoco

In a previous blog post, we showed how to use Jacoco to check the code coverage of your tests in a maven Java project. If your project is substantial, you will have multiple maven modules. So how can we compute the global code coverage?

Read more
Test your Laravel project with GitLab

So you have a Laravel project, and as a good programmer you are using GitLab to manage your code, and you started implementing some phpunit tests. But how to run these tests in GitLab?

Read more