Blog Profile / No Fluff Just Stuff
| URL : | http://www.nofluffjuststuff.com/home.jsp | |
|---|---|---|
| Filed Under: | Technology / Programming | |
| Posts on Regator: | 5457 | This blog is retired. |
| Archived Since: | June 30, 2008 | |
Blog Post Archive
Use-Case Zero
Some weeks back I lobbed an overly terse “noooooooooo!!!!!” at the W3C Web Application Security Working Group over revisions to the CSP 1.1 API; specifically a proposed reduction of the surface area to include only bits for which they could think of direct use-cases in a face-to-face meeting. Show More Summary
Chrome 24.0.1312.52 has been updated for Windows, Mac, Linux, and Chrome Frame, (Wed, May 22nd)
...(more)...
ISC StormCast for Thursday, May 23rd 2013 http://isc.sans.edu/podcastdetail.html?id=3326, (Thu, May 23rd)
...(more)...
Deploying Applications to GlassFish Using curl
Earlier today, I wrote about a quick and dirty hack I put together to create a very simple editor for AsciiDoc files. While I have no immediate plans to make this a full-featured editor, there’s a part of me that can’t help but hack on it. Show More Summary
MoVP II, (Thu, May 23rd)
Volatility is a Python framework for performing memory forensics. If you haven't tried it...(more)...
I Swear This Blog Isn’t About Elections…
…but if it were, there would be time to cover the W3C Advisory Board election. This is truly inside-baseball stuff, as most of the AB’s work happens in member-only areas of the W3C website and most of what they effect is W3C process. So...Show More Summary
Wireshark 1.10.0rc2 is now available http://www.wireshark.org/download.html, (Thu, May 23rd)
...(more)...
ISC StormCast for Wednesday, May 22nd 2013 http://isc.sans.edu/podcastdetail.html?id=3323, (Wed, May 22nd)
...(more)...
Privilege escalation, why should I care?, (Wed, May 22nd)
In my day job I spend about 90% of my time on the red team, performing vulnerability assessmen...(more)...
Exposing Enterprise Services via REST APIs
Appery.io has always made it quite simple to integrated with backend systems via REST APIs — but what if those systems are behind the firewall and don’t support REST?? Many enterprise apps required access to data that is sitting on a...Show More Summary
Chrome 27 stable released http://googlechromereleases.blogspot.ca/ some security fixes, (Tue, May 21st)
...(more)...
Cascading Pattern – Machine Learning for Cascading and Hadoop
Announcing Pattern, a new library and framework that executes PMML workflows as Cascading applications on Apache Hadoop clusters. Read more about it on the Pattern project page, signup for announcements on the mail list, or read the press release.
ISC StormCast for Tuesday, May 21st 2013 http://isc.sans.edu/podcastdetail.html?id=3320, (Tue, May 21st)
...(more)...
Devs in the ‘Ditch Slides Posted
I gave a talk at Devs in the ‘Ditch last week when I was in London. I posted the slides on slideshare: Overcoming Three Pitfalls of Transitioning to Agile. The very nice people at 7digital made a video and posted it, too. If you can take the time, watch the entire video. Show More Summary
ISC StormCast for Monday, May 20th 2013 http://isc.sans.edu/podcastdetail.html?id=3317, (Mon, May 20th)
...(more)...
CVE-2013-2094: Linux privilege escalation, (Tue, May 14th)
A vulnerability was discovered using fuzzing in linux kernels 2.6...(more)...
Port 51616 - Got Packets?, (Sun, May 19th)
We're looking for any info or packets that target port 51616. After witnessing a sp...(more)...
Auto-Refresh for Play Framework Apps
Over this past weekend I built a little tool for Play Framework app developers which auto-refreshes an app in Chrome when the source code or static assets change. Check out a video demonstration: For information on how to set it up,Show More Summary