Erwin Bierens

Knowledge is Power

Migration to Hugo Framework

2019-04-24 4 min read Security
My journey in moving to Hugo For more then 10 years I’ve been using Wordpress to run my blog site and now i have made the decission to switch to using Hugo, a static site generator. Now I’d like to share my reasons for doing this, and (perhaps) how you can do this too. WordPress is pretty easy to use, and there are plenty of plugins allowing you to do pretty much anything. Continue reading

Route all traffic by OpenVPN

2018-12-11 1 min read Linux Security Erwin Bierens
In October i posted a blog about setting up your OpenVPN server in 2 minutes. This blog is a addon to your existing configuration to route all traffic over the VPN. / Change server configuration go to the config file (/etc/openvpn/server.conf) and add the following lines: push "redirect-gateway def1" push "dhcp-option DNS " push "dhcp-option DNS 1.1.1.1" Restart your OpenVPN daemon sudo /etc/init.d/openvpn restart Change client configuration Change your client config, and add the following line Continue reading

Error on installing Kali Tools in Ubuntu

2018-10-25 1 min read Linux Security Erwin Bierens
When you want to run a Raspberry Pi for pentesting, you can easily download all of the Kali linux to your Pi. https://www.ostechnix.com/install-kali-linux-tools-using-katoolin-linux/ After changing the repository i ran in to a error. While people on the forum ginving some different options, this one worked for me. `wget https://http.kali.org/kali/pool/main/k/kali-archive-keyring/kali-archive-keyring_2018.1_all.deb` `sudo apt install ./kali-archive-keyring_2018.1_all.deb` Everything looks fine now. Let’s check for the final. `sudo apt-get update` `` /s

How to create trusted network for MFA in Office365

2018-10-22 1 min read Office365 Security Erwin Bierens
What is MFA? Multi-factor authentication (MFA) is a method of authentication that requires the use of more than one verification method and adds a second layer of security to user sign-ins and transactions. You can choose the following verification methods: A randomly generated pass code (Microsoft Authenticator App or SMS) A phone call A smart card (virtual or physical) A biometric device / Enable MFA When you don’t use MFA, but want to enable this. Continue reading

Security Updates Skype for Business (Lync) Client - June 2017

2017-06-14 1 min read Security Skype for Business Erwin Bierens
During patch Tuesday Microsoft released two security patches for Skype for Business and one for Lync 2013. Security update for Skype for Business 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2017-0283. (download KB3203382) Security update for Skype for Business 2015 (Lync 2013) Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. Continue reading

Block the Blue Coat Intermediate CA from Windows

2016-05-27 1 min read Security Erwin Bierens
Symantec has gotten in hot water for issuing rogue certificates (source). While Symantec has agreed to certificate transparency, Blue Coat systems is a known operator of MITM services they sell to enterprises, nation-states and governments, and this certificate would allow Blue Coat to issue arbitrary MITM certificates. OSX instruction can be find over here (By Filippo Valsorda) Block the Intermediate CA on your windows computer Download the certificate to your computer or just click “Open”. Continue reading

Force HTTPS On Your WordPress Site

2016-05-12 2 min read Security Erwin Bierens
I’m running my wordpress site for quite some time now.. My site is HTTPS enabled and signed with a certificate. HTTP was also possible in the past for reaching my site. In this guide i’m going to point all of the pages (including the administrative) to force HTTPS. To simplify this, the guide will build into the following 3 parts: 1. Force SSL for administrator pages (including the login page) 2. Continue reading
Older posts