Reference Library

Reference Library – Collection of blog posts and articals stored for referance works and back linking to authors web sites.

New Features Added to CERT Tapioca Tool

The CERT Coordination Center (CERT/CC) at Carnegie Mellon University this week announced the launch of a new version of the network traffic analysis tool CERT Tapioca. CERT Tapioca was first released in 2014 as a network-layer man-in-the-middle (MITM) proxy virtual machine designed for identifying apps that fail to validate certificates and investigating the content of HTTP and HTTPS traffic. CERT Tapioca has been used to identify Android applications that fail to properly validate SSL certificates and expose users to MitM attacks.

More than one million apps have been checked and over 23,000 of them failed dynamic testing. The tool can be used to analyze network traffic not only on smartphones, but also on IoT devices, computers and VMs. Will Dormann, vulnerability analyst at CERT/CC and developer of CERT Tapioca, on Thursday announced the release of version 2.0, which introduces a graphical user interface and can be installed on multiple Linux distributions, including Red Hat, CentOS, Fedora, Ubuntu, OpenSUSE, and Raspbian.

CERT Tapioca 2.0 also allows users to set up a HOSTAP-compatible Wi-Fi adapter for wireless connectivity, and it can save results from multiple tested systems. In addition to checking HTTPS validation, verifying an application's use of modern cryptography standards, and observing the hosts contacted by an application, Tapioca now allows users to search network traffic for specified strings, such as passwords.

The CERT Tapioca 2.0 source code, along with additional details and usage instructions, are available on GitHub. Related: Kaspersky Releases Open Source Digital Forensics Tool Related: Secureworks Releases Open Source IDS Tools

Related: UK's GCHQ Spy Agency Launches Open Source Data Analysis Tool

Police Believe Security Video Shows Tire Slasher In Action

LAKEWOOD, Colo. (CBS4) - The search is on for the suspect or suspects who slashed the tires of 13 cars in Lakewood overnight. Security video shows what police believe is the suspect. Now, investigators hope someone recognizes the tire slasher.

(credit: Lakewood Police)

It happened to residents near West Center Avenue in the city's Belmar neighborhood.Police Believe Security Video Shows Tire Slasher In Action

Police said there doesn't appear to be an obvious motive for the action.

Police Believe Security Video Shows Tire Slasher In Action

(credit: Lakewood Police)

Anyone with more information about the crime is asked to call police at (303) 980-7300.

GDPR: 'Don't panic!' data watchdog tells firms

[unable to retrieve full-text content]

  1. GDPR: 'Don't panic!' data watchdog tells firms  BBC News
  2. Will the EU's GDPR Rules Launch a New Era of Data Protection?  [email protected]
  3. Taiwan and the GDPR: Are We Ready?  The News Lens International
  4. EU eyes Ireland's data regulator as GDPR comes into force  Irish Times
  5. Full coverage