Piwik

Piwik is a downloadable, open source (GPL licensed) real time web analytics software program. It provides you with detailed reports on your website visitors: the search engines and keywords they used, the language they speak, your popular pages… and so much more.

Piwik aims to be an open source alternative to Google Analytics, and is already used on more than 200,000 websites.

Piwik is a PHP MySQL software program that you download and install on your own webserver. At the end of the five minute installation process you will be given a JavaScript code. Simply copy and paste this tag on websites you wish to track (or use an existing plugin to do it automatically for you) and access your analytics reports in real time.

http://piwik.org

Fn key stuck on Dell laptop

OK, you don't know how it happened, you suspect the cat or the housekeeper, but suddenly your keyboard mapping is not correct anymore. You expect a character but get a number or a -

If you login with another user, then there is no problem.

Most likely your Fn is stuck with your current user profile.

Solve this problem by pressing at the same time:

Fn + F12 + Num Lk

Lynis

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

http://www.rootkit.nl/projects/lynis.html

phttpget

A minimalist pipelined HTTP client

http://www.daemonology.net/phttpget

Tails

Tails is a live system that aims at preserving your privacy and anonymity. It helps you to use the Internet anonymously almost anywhere you go and on any computer but leave no trace using unless you ask it explicitly.

It is a complete operating-system designed to be used from a CD or a USB stick independently of the computer's original operating system. It is Free Software and based on Debian GNU/Linux.

Tails comes with several built-in applications pre-configured with security in mind: web browser, instant messaging client, email client, office suite, image and sound editor, etc.

http://tails.boum.org

BleachBit

BleachBit quickly frees disk space and tirelessly guards your privacy. Free cache, delete cookies, clear Internet history, shred temporary files, delete logs, and discard junk you didn't know was there. Designed for Linux and Windows systems, it wipes clean 90 applications including Firefox, Internet Explorer, Adobe Flash, Google Chrome, Opera, Safari,and more. Beyond simply deleting files, BleachBit includes advanced features such as shredding files to prevent recovery, wiping free disk space to hide traces of files deleted by other applications, and vacuuming Firefox to make it faster. Better than free, BleachBit is open source.

http://bleachbit.sourceforge.net

thttpd - tiny/turbo/throttling HTTP server

thttpd is a simple, small, portable, fast, and secure HTTP server

http://www.acme.com/software/thttpd/

Tahoe-LAFS

Tahoe-LAFS is a Free and Open cloud storage system. It distributes your data across multiple servers. Even if some of the servers fail or are taken over by an attacker, the entire filesystem continues to function correctly, including preservation of your privacy and security.

https://tahoe-lafs.org

MySQL create database, user and permissions

mysql -u root -p

create database databasename;

grant usage on *.* to databaseuser@localhost identified by 'userpassword';

grant all privileges on databasename.* to databaseuser@localhost ;

Google analytics with phpBB

Open up the overal_footer.html file (somewhere at /styles/templatename/templates/overal_footer.html)

Add your Google Analytics code before the tag.

The Duqu Saga Continues: Enter Mr. B. Jason and TV’s Dexter

https://www.securelist.com/en/blog/208193243/The_Duqu_Saga_Continues_Enter_Mr_B_Jason_and_TVs_Dexter

Malware Signed With a Governmental Signing Key

http://www.f-secure.com/weblog/archives/00002269.html

Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all Internet users to experience the web. This site contains design documents, architecture overviews, testing information, and more to help you learn to build and work with the Chromium source code.

http://www.chromium.org

fping

fping is a ping like program which uses the Internet Control Message Protocol (ICMP) echo request to determine if a host is up. fping is different from ping in that you can specify any number of hosts on the command line, or specify a file containing the lists of hosts to ping. Instead of trying one host until it timeouts or replies, fping will send out a ping packet and move on to the next host in a round-robin fashion. If a host replies, it is noted and removed from the list of hosts to check. If a host does not respond within a certain time limit and/or retry limit it will be considered unreachable.
Unlike ping, fping is meant to be used in scripts and its output is easy to parse.

http://fping.sourceforge.net

Shutter is a feature-rich screenshot program. You can take a screenshot of a specific area, window, your whole screen, or even of a website – apply different effects to it, draw on it to highlight points, and then upload to an image hosting site, all within one window. Shutter is free, open-source, and licensed under GPL v3.

http://shutter-project.org

Write your own init script

Ubuntu has a so called skeleton script that you can use as the base of your script. You can find the script at: /etc/init.d/skeleton

Make a copy of it and edit

Upgrade an Ubuntu Server system

The correct way to upgrade an Ubuntu Server system is:

sudo do-release-upgrade

What is the package: libaccountsservice0

The AccountService project provides a set of D-Bus interfaces for querying and manipulating user account information and an implementation of these interfaces, based on the useradd, usermod and userdel commands.

sleuthkit.org

sleuthkit.org is the official web site for The Sleuth Kit and Autopsy Browser. Both are open source digital investigation tools (a.k.a. digital forensic tools) that run on Windows and Unix systems (such as Linux, OS X, Cygwin, FreeBSD, OpenBSD, and Solaris). They can be used to analyze NTFS, FAT, HFS+, Ext2, Ext3, UFS1, and UFS2 file systems and several volume system types.

The Sleuth Kit (TSK) is a C library and a collection of command line tools. Autopsy is a graphical interface to TSK. TSK can be integrated into automated forensics systems in many ways, including as a C library and by using the SQLite database that it can can create.

http://www.sleuthkit.org

SmokePing

SmokePing keeps track of your network latency:
- Best of breed latency visualisation
- Interactive graph explorer
- Wide range of latency measurment plugins
- Master/Slave System for distributed measurement
- Highly configurable alerting system
- Live Latency Charts with the most 'interesting' graphs
- Free and OpenSource Software written in Perl written by Tobi Oetiker, the creator of MRTG and RRDtool

http://oss.oetiker.ch/smokeping/

Tor 0.2.2.34 fixes a critical anonymity vulnerability where an attacker can deanonymize Tor users. Everybody should upgrade.

https://blog.torproject.org/blog/tor-02234-released-security-patches

Sacre bleu! French snooped on British government emails

http://www.v3.co.uk/v3-uk/security-watchdog-blog/2120579/sacre-bleu-french-snooped-british-government-emails

Insulin pump hack delivers fatal dosage over the air

http://www.theregister.co.uk/2011/10/27/fatal_insulin_pump_attack/

China Suspected in Attacks on U.S. Satellites

http://www.bloomberg.com/news/2011-10-27/chinese-military-suspected-in-hacker-attacks-on-u-s-satellites.html

False positive: Detection of file AESCRIPT.DLL as "TR/Spy.463227"

http://forum.avira.com/wbb/index.php?page=Thread&threadID=137969

Well done!!!

Cyber attacks hit Japan diplomatic missions

http://www.google.com/hostednews/afp/article/ALeqM5i3yvHAAr1OLO2i_UQMFck8Ia6tYg?docId=CNG.b9472591baf3c5b93f72fa660a4a76c7.6c1&hl=en&lr=all

Cyber-attack stole Mitsubishi warplane, nuke plant data

http://ajw.asahi.com/article/behind_news/social_affairs/AJ2011102415638

The Mystery of Duqu: Part Two

http://www.securelist.com/en/blog/208193197/The_Mystery_of_Duqu_Part_Two

How secure is HTTPS today? How often is it attacked?

https://www.eff.org/deeplinks/2011/10/how-secure-https-today

e0009579 - Unable to copy the virtual machine disk using the VMware VixDiskLib

SOLUTION http://www.symantec.com/business/support/index?page=content&id=TECH157413

Zoom Website Seach Engine

Zoom is the easiest way to add a powerful custom search engine to your website, intranet, or CD-ROM and DVD.

http://www.wrensoft.com/zoom/index.html

Tftpd32

Tftpd32 is a free, opensource IPv6 ready application which includes DHCP, TFTP, DNS, SNTP and Syslog servers as well as a TFTP client.
The TFTP client and server are fully compatible with TFTP option support (tsize, blocksize and timeout), which allow the maximum performance when transferring the data.
Some extended features such as directory facility, security tuning, interface filtering; progress bars and early acknowledgments enhance usefulness and throughput of the TFTP protocol for both client and server.
The included DHCP server provides unlimited automatic or static IP address assignment.

Tftpd32 is also provided as a Windows service.

Tftpd64 is the same application compiled as a 64 bits application.

http://tftpd32.jounin.net

Fortigate firewall problem

PROBLEM
The phase1 of your VPN connection is not listed in the selection list of the Firewall Policy creation screen

SOLUTION
Delete and re-create the Phase 1 and Phase 2 of the VPN connection and make sure you select "Enable IPSec Interface Mode"

Windows Developer Preview - Build 8102 - Start / Clock

When I hover with the mouse over the "start" Windows button, the menu and time date is displayed. But in my case this does not happen all the time. Sometimes nothing happens.



You can also click on the Windows button. If you do that then the Metro-Interface show again.

Windows Developer Preview - Build 8102 - Metro interface

Windows Developer Preview - Build 8102 - Version

Screenshot of the current version that I am using 8102:

Windows Developer Preview - Build 8102 - Blogger

I had problem submitting a new message on blogger.com with Internet Explorer 10, so I installed the Google Chrome browser without any problems.

Malware Blog | TrendLabs

Threat news and information.

Botnet - Exploits - Hacked Sites - Malicious Sites - Malware - Microsoft - Mobile - News - Pharming - Security - Spam - Vulnerabilities

http://blog.trendmicro.com

Contagio

Contagio is a collection of the latest malware samples, threats, observations, and analyses.

http://contagiodump.blogspot.com/

Windows Developer Preview downloads

The Windows Developer Preview is a pre-beta version of Windows 8 for developers. These downloads include prerelease software that may change without notice. The software is provided as is, and you bear the risk of using it. It may not be stable, operate correctly or work the way the final version of the software will. It should not be used in a production environment. The features and functionality in the prerelease software may not appear in the final version. Some product features and functionality may require advanced or additional hardware, or installation of other software.

http://msdn.microsoft.com/en-us/windows/apps/br229516

Ubuntu package: ca-certificates

It includes the followings PEM files of CA certificates

* spi-inc.org certificate
* db.debian.org certificate
* debconf.org certificate
* Mozilla builtin CA certificates
* CACert.org certificates
* Brazilian Government Certificate
* Signet CA certificates
* QuoVadis CA certificates

This is useful for any openssl applications to verify SSL connection.

Note that certificate authorities whose certificates are included in this package are not in any way audited for trustworthiness and RFC 3647 compliance, and that full responsibility to assess them rests with the user.

Click here for more info

Improvements in Windows Explorer

Click here to read and see more

Delivering fast boot times in Windows 8

Click here to read more

Daemonlogger

This is a libpcap-based program. It has two runtime modes:

1)It sniffs packets and spools them straight to the disk and can daemonize itself for background packet logging. By default the file rolls over when 1 GB of data is logged.

2)It sniffs packets and rewrites them to a second interface, essentially acting as a soft tap. It can also do this in daemon mode.

These two runtime modes are mutually exclusive, if the program is placed in tap mode (using the -I switch) then logging to disk is disabled.

http://www.snort.org/users/roesch/Site/Daemonlogger/Daemonlogger.html

Security breach on kernel.org

Earlier this month, a number of servers in the kernel.org infrastructure were compromised.

Click here to read more

DuckDuckGo

DuckDuckGo is a search engine that protects privacy and has lots of features.

Aanval

Aanval is the industry's leading Snort and Syslog SIEM ("Security Information and Event Management") console. Government security and defense organizations from more than a half dozen countries, educational institutions from around the world, global financial organizations as well as space exploration and military weapons manufacturers rely upon Aanval as a part of their security infrastructure.

http://www.aanval.com

Opening the email that was used to hack RSA

DuckDuckGo

DuckDuckGo is a general purpose search engine that is intended to be your starting place when searching the Internet. Use it to get way more instant answers, way less spam and real privacy, which we believe adds up to a much better overall search experience.

http://duckduckgo.com

Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \(CVE-2011-3192\)

Description:
============

A denial of service vulnerability has been found in the way the multiple
overlapping ranges are handled by the Apache HTTPD server:

http://seclists.org/fulldisclosure/2011/Aug/175

An attack tool is circulating in the wild. Active use of this tools has
been observed.

The attack can be done remotely and with a modest number of requests can
cause very significant memory and CPU usage on the server.

The default Apache HTTPD installation is vulnerable.

There is currently no patch/new version of Apache HTTPD which fixes this
vulnerability. This advisory will be updated when a long term fix
is available.

A full fix is expected in the next 48 hours.

Click here for more information

Printing excel to PDF with PDF writer (DoPDF) problem

PROBLEM:
You are trying to create a PDF file of an excel file with multiple worksheets by printing through a PDF writer like for example DoPDF. The result is that you get multiple PDF files. You can't create one PDF.

SOLUTION:
This is caused by worksheets that have different DPI settings. Change all worksheets to the same DPI setting and it will work.

Building Windows 8 blog

An inside look from the Windows engineering team.

http://blogs.msdn.com/b/b8/

AdInsight - Insight for Active Directory

ADInsight is an LDAP (Light-weight Directory Access Protocol) real-time monitoring tool aimed at troubleshooting Active Directory client applications. Use its detailed tracing of Active Directory client-server communications to solve Windows authentication, Exchange, DNS, and other problems.

ADInsight uses DLL injection techniques to intercept calls that applications make in the Wldap32.dll library, which is the standard library underlying Active Directory APIs such ldap and ADSI. Unlike network monitoring tools, ADInsight intercepts and interprets all client-side APIs, including those that do not result in transmission to a server. ADInsight monitors any process into which it can load it’s tracing DLL, which means that it does not require administrative permissions, however, if run with administrative rights, it will also monitor system processes, including windows services.

http://technet.microsoft.com/en-us/sysinternals/bb897539

Fiddler

Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect all HTTP(S) traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended using any .NET language.

Fiddler is freeware and can debug traffic from virtually any application, including Internet Explorer, Mozilla Firefox, Opera, and thousands more.

http://www.fiddler2.com

Outlook Out of Office error: The command is not available

PROBLEM:
When you try to start the Out of Office Assistant an error message appears which says: "The command is not available"

SOLUTION:
- close Outlook (also press ctrl-alt-del and start the task manager and end all running Outlook.exe processes)
- start regedit and go to: HKEY_CURRENT_USER\Software\Microsoft\Office\10.0\Outlook\Resiliency
- rename "Resiliency" into "Resiliency_old"
- close regedit and start Outlook

AdExplorer - Active Directory Explorer - Windows Sysinternals

Active Directory Explorer (AD Explorer) is an advanced Active Directory (AD) viewer and editor. You can use AD Explorer to easily navigate an AD database, define favorite locations, view object properties and attributes without having to open dialog boxes, edit permissions, view an object's schema, and execute sophisticated searches that you can save and re-execute.

AD Explorer also includes the ability to save snapshots of an AD database for off-line viewing and comparisons. When you load a saved snapshot, you can navigate and explorer it as you would a live database. If you have two snapshots of an AD database you can use AD Explorer's comparison functionality to see what objects, attributes and security permissions changed between them.

http://technet.microsoft.com/en-us/sysinternals/bb963907

AccessEnum - Windows Sysinternals

While the flexible security model employed by Windows NT-based systems allows full control over security and file permissions, managing permissions so that users have appropriate access to files, directories and Registry keys can be difficult. There's no built-in way to quickly view user accesses to a tree of directories or keys. AccessEnum gives you a full view of your file system and Registry security settings in seconds, making it the ideal tool for helping you for security holes and lock down permissions where necessary.

http://technet.microsoft.com/en-us/sysinternals/bb897332

AccessChk - Windows Sysinternals

As a part of ensuring that they've created a secure environment Windows administrators often need to know what kind of accesses specific users or groups have to resources including files, directories, Registry keys, global objects and Windows services. AccessChk quickly answers these questions with an intuitive interface and output.

http://technet.microsoft.com/en-us/sysinternals/bb664922

CyanogenMod

CyanogenMod (pronounced sigh-AN-oh-jen-mod), is a customized, aftermarket firmware distribution for several Android devices. Based on the Android Open Source Project, CyanogenMod is designed to increase performance and reliability over Android-based ROMs released by vendors and carriers such as Google, T-Mobile, HTC, etc. CyanogenMod also offers a variety features & enhancements that are not currently found in these versions of Android.

http://www.cyanogenmod.com

VMProtect

VMProtect protects code by executing it on a virtual machine with non-standard architecture that makes it extremely difficult to analyze and crack the software. Besides that, VMProtect generates and verifies serial numbers, limits free upgrades and much more.

http://vmpsoft.com