On August 18th IP address 23.227.202.82 (Tampa, Florida) triggered the suricata alert “ET SCAN MS Terminal Server Traffic on Non-standard Port” on my web server. This is apparently an attempted information leak,…
Torrent in Sheep’s Clothing
I discovered that my son was using BitTorrent. The alert GPL P2P BitTorent Transfer showed up in Security Onion in the 100’s of thousands. He said he uses it to download Linux…
WUDO and, well, that was dumb
Allow me to introduce you to WUDO. WUDO is Windows Update Delivery Optimization, and not the Western Union Defence Organisation. This is a feature introduced in Windows 10 to cut down on…
An Analysis of a Log4Shell Attack
An interesting thing appeared on my Apache log doorstep in late September. What follows is the actual code received from what I am calling a probable Log4Shell exploit. I was hesitant to…
WordPress Install
I wanted to share what I’ve done over the years to successfully deploy a wordpress site hosted internally on my personal network. If you don’t want to pay for a subscription for…
Penetration Test, No Charge
Back in early July some strange traffic was setting off Suricata alerts. The target was my WordPress website. The website is for the benefit of a non-profit and because of ISP restrictions,…
These Are the Pros and Cons of …
… Clear Text Authentication Back in June I got a Suricata alert saying a local computer was authenticating using clear text. That computer was my son’s Nintendo Wii. Security Onion is an…
Frederick’s Tiny Corner of the Cyber Universe
Allow me to introduce my homelab. Clearly it is a work in progress and its structure reflects my use case, skill set, and available time. I am fully aware that it is…
The Setup…of Francis
Hello all! One of the things I have learned over the years is that nothing beats hands on training. Before I describe my environment, let me introduce you to the rabbit hole…
Welcome to my HomeLab
Good Evening. We are Frederick and Francis. We are Cybersecurity analysts with servers in our houses. In these pages our intention is to document the more interesting things we find, explore what…