Tags » OPSEC

OpSec: Well Duh!

Talk about “Gray Man,” my five year old Honda Civic looks like a hundred thousand other Honda Civics out there. It is even gray in color, the most popular color in that model run. 485 more words

Being Prepared

OPSEC fail: China and the African Union center

It is becoming more and more common seeing big players doing childish operational security mistakes and this is one of them. The entire failure can be summarized effectively by the following picture. 169 more words


OPSEC fail: Triton ICS malware

This was a pretty nasty OPSEC failure that happened about two months ago. And it all started with one of my favourite threat hunting platforms, VirusTotal. 357 more words


How I screwed up a Strava story

A story I wrote weeks ago started to go bad last Saturday, before it had even been published and posted.

That’s when an Australian student named Nathan Ruser… 465 more words


Enabling opsec in Checkpoint smart center server

this is for new setup.

cd config
vi fwopsec.conf
add these lines:
   lea_server  auth_port   18184
   lea_server  auth_type   sslca

vi $CPDIR/conf/sic_policy.conf
add this line

ANY    ; ANY  ; 18184    ; sslca ; ssl, fwn1, local_ipcheck

OPSEC: Fitness tracking app Strava gives away location of secret US army bases

Alex Hern


Sun 28 Jan 2018 16.51 ESTFirst published on Sun 28 Jan 2018 12.46 EST

Data about exercise routes shared online by soldiers can be used to pinpoint overseas facilities… 652 more words

Information Operations

A Missing Checklist Item

Good evening!

Last year, my buddy Kai had An OpeSec Event. His business depends on two dozen hosted services (a common situation today), and in the management of all that he’d forgotten to remove access for a former user. 256 more words

Best Practices