Erwin Bierens

Knowledge is Power

Migration to Hugo Framework

2019-04-24 4 min read Security     "Erwin Bierens"

My journey in moving to Hugo

For more then 10 years I’ve been using Wordpress to run my blog site and now i have made the decission to switch to using Hugo, a static site generator. Now I’d like to share my reasons for doing this, and (perhaps) how you can do this too.

WordPress is pretty easy to use, and there are plenty of plugins allowing you to do pretty much anything. However, the numerous WordPress/plugin updates, upgrades and countless security flaws were making me feel it was time to replace WordPress for a static site.

Continue reading

Route all traffic by OpenVPN

2018-12-11 1 min read Linux Security Erwin Bierens

In October i posted a blog about setting up your OpenVPN server in 2 minutes.

This blog is a addon to your existing configuration to route all traffic over the VPN. 

/

Change server configuration

go to the config file (/etc/openvpn/server.conf) and add the following lines:

    push "redirect-gateway def1"
    push "dhcp-option DNS "
    push "dhcp-option DNS 1.1.1.1"

Restart your OpenVPN daemon

    sudo /etc/init.d/openvpn restart

Change client configuration

Change your client config, and add the following line

Continue reading

Error on installing Kali Tools in Ubuntu

2018-10-25 1 min read Linux Security Erwin Bierens

When you want to run a Raspberry Pi for pentesting, you can easily download all of the Kali linux to your Pi.

https://www.ostechnix.com/install-kali-linux-tools-using-katoolin-linux/

After changing the repository i ran in to a error.

While people on the forum ginving some different options, this one worked for me.

	`wget https://http.kali.org/kali/pool/main/k/kali-archive-keyring/kali-archive-keyring_2018.1_all.deb`

	`sudo apt install ./kali-archive-keyring_2018.1_all.deb`

Everything looks fine now. Let’s check for the final.

	`sudo apt-get update`

``

Continue reading

How to create trusted network for MFA in Office365

2018-10-22 1 min read Office365 Security Erwin Bierens

What is MFA?

Multi-factor authentication (MFA) is a method of authentication that requires the use of more than one verification method and adds a second layer of security to user sign-ins and transactions. You can choose the following verification methods:

  • A randomly generated pass code (Microsoft Authenticator App or SMS)
  • A phone call
  • A smart card (virtual or physical)
  • A biometric device

/

Enable MFA

When you don’t use MFA, but want to enable this. Follow this guide (Microsoft).

Continue reading

Security Updates Skype for Business (Lync) Client - June 2017

2017-06-14 1 min read Security Skype for Business Erwin Bierens

During patch Tuesday Microsoft released two security patches for Skype for Business and one for Lync 2013.

Security update for Skype for Business 2016

Summary

This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2017-0283.

(download KB3203382)

Security update for Skype for Business 2015 (Lync 2013)

Summary

This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2017-0283.

Continue reading

Block the Blue Coat Intermediate CA from Windows

2016-05-27 1 min read Security Erwin Bierens

Symantec has gotten in hot water for issuing rogue certificates (source). While Symantec has agreed to certificate transparency, Blue Coat systems is a known operator of MITM services they sell to enterprises, nation-states and governments, and this certificate would allow Blue Coat to issue arbitrary MITM certificates.

OSX instruction can be find over here (By Filippo Valsorda)

Block the Intermediate CA on your windows computer

  1. Download the certificate to your computer or just click “Open”. (for Firefox users read below)

Blue Coat Intermediate CA

Continue reading

Force HTTPS On Your WordPress Site

2016-05-12 2 min read Security Erwin Bierens

I’m running my wordpress site for quite some time now.. My site is HTTPS enabled and signed with a certificate. HTTP was also possible in the past for reaching my site. In this guide i’m going to point all of the pages (including the administrative) to force HTTPS.

To simplify this, the guide will build into the following 3 parts:

  1. Force SSL for administrator pages (including the login page)
  2. Secure all normal pages with HTTPS
  3. Change .htaccess to redirect all HTTP to HTTPS

When all of this is completed you should have a WordPress site completely running secure with HTTPS.

Continue reading
Older posts