OpenVAS Reporting: Convert OpenVAS XML report files to reports

OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The framework is part of Greenbone Networks‘ commercial vulnerability management solution from which developments are contributed to the Open Source community since 2009.

Continue reading OpenVAS Reporting: Convert OpenVAS XML report files to reports

Blocking EU IPs doesn’t mean you comply with GDPR…

The EU General Data Protection Regulation (GDPR)

According to the EU GDPR Information Portal, “The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years”.
It’s arrival has definitely made a big splash and the hyping has definitely made a lot of website owners scared, leading to a lot of incorrect information being spread around as well the rise of companies trying to benefit from the confusion by selling fake certifications.

The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.
~ EU GDPR Information Portal

Continue reading Blocking EU IPs doesn’t mean you comply with GDPR…

#CopyPasteOffenders

There has been a lot of fuzz regarding websites not allowing copy/paste in the password field of a registration or login page.

I personally agree with eminent figures like Troy Hunt and the NCSC in that disabling password pasting decreases the security of the site since it hinders the use of passwords managers.
However, there have been comments supporting the contrary as well.
Before you pick sides in this debate, I’d suggest you read the comments made on both sides. Do also read why some of the justifications used by companies are incorrect ill-informed.
Continue reading #CopyPasteOffenders

Sharing Podcasts

Podcasts are my method of choice for keeping up to speed with the latest in the world (of infosec). I enjoy listening to podcasts while driving to/from work.

I thought I’d share a list of my favourite podcasts for all who might be interested.
Since my list is limited and the amount of available podcasts is ginormous, I’m definitely open for suggestions.
Continue reading Sharing Podcasts