Python + OSMnx — I always liked city maps and a few weeks ago I decided to build my own artistic versions of it. After googling a little bit I discovered this incredible tutorial written by Frank Ceballos. It is a fascinating and handy tutorial, but I…

A quick review of DNS and DNS Enumeration Tools DNS is one of the oldest protocols on the Internet. Created in 1983, we use DNS on a daily basis whenever we surf the internet. An often-used analogy to explain the DNS protocol is to compare it with a phone book…

Road to Elastic Certified Engineer IV — Elasticsearch 7.2 — After learning how to perform CRUD operations into elasticsearch, we should learn how to administrate our cluster. Backups and shard allocations are fundamental tasks that we should be able to perform. Shard allocation filtering As mentioned in previous posts elastic allocate indices into one or more shards, and we can save those shards…

Road to Elastic Certified Engineer III — Elasticsearch 7.2 After learning how to deploy our own elasticsearch cluster, create indexes and load data into elasticsearch we should learn how to perform queries. CREATE — Insert The first operation we should know is how to insert data, I already mentioned this in a previous…

Road to Elastic Certified Engineer II One of the first things that we need to learn, after learning how to deploy our own elasticsearch cluster, is to insert and interact with data inside a cluster. …

Incredible open-source software trading Last few years I have been trading cryptocurrencies and as a computer scientist, I always been interested in automated trading bots. I have read some stories and saw some videos about this topic. So I decided to try this technology. But first of all, a little…

Setting up your own mobile penetration lab Recently I was hired to give a course about mobile security. Apart from the OWASP Mobile Top 10, one of the basics for performing mobile or app penetration testing is to have Lab. In this guide, I will explain the basics to set…

Setting up a quick WiFi MITM scenario using berate_ap + mitmproxy Since I started to work, around the end of 2013, I always find interesting WiFi security. Along all these years I tested several tools for performing WiFi security attacks, and each tool has its strength and weaknesses. One attack…

A forensic challenge from a national CTF in Spain — Last week a CTF event organized by the Spanish Guardia Civil was organized, the II NATIONAL CYBERLEAGUE GC. This challenge is oriented to students, due to that reason I could not participate. But I have I friend who participate, He knows I love forensic challenges so He sent me one…