Published inSpark 1 Cybersecurity·Oct 30, 2023Secret Scanner for Jira and Confluence: CVE-2023–22515 Defense in DepthTLDR; Upgrade Confluence to a patched version and employ the open-source security scanner n0s1 to proactively address potential secret leaks. Why do I need a secret scanner? It is a widely recognized best practice for Product Security Engineers to conduct scans of the software codebase in search of potential inadvertent secret…Leak Detection7 min readLeak Detection7 min read
Published inSpark 1 Cybersecurity·May 18, 2020Car Hacking with Python — Part 1 Data Exfiltration: GPS and OBDII/CAN BusThis article is the base for my presentation at DEF CON 28 Car Hacking Village. I introduce a Python based device for sending and receiving CAN messages from the OBDII port; and also getting live GPS coordinates from a moving vehicle. All the CAN and GPS data is exfiltrated to…Car Hacking11 min readCar Hacking11 min read
Published inSpark 1 Cybersecurity·Jun 11, 2019Antivirus Evasion with PythonThis malware research was developed at Spark 1 Cybersecurity Solutions. Summary When deploying defense in depth security controls for your organization, you are likely to include anti-viruses as part of the solution. …Python6 min readPython6 min read