8 RESULTS IN TAG "tutorial":

CertDB is a free SSL certificate search engine and analysis platform

How many times have you stumbled on the SSL certificate, and the only things that you cared about were Common Name (CN), DNS Names, Dates (issue and expiry)? Do you know SSL certificate can speak so much about you/ your firm? It can tell stories and motives; you can gather a good intelligence from them - which companies are hosting new domains, sub-domains; did they just revoke the last certificate? Or, why some firm switched its vendors/ CA(s)? We all have read that SSL certificates have always been the talk of the town for their inherent strength but weak...
Read More

Ten things you may reveal during job interview (Response to Forbes Article)

In continuation to my recent articles on preparation for the interview, and few pointers to make perform better during the interview, I stumbled on an article at Forbes - Ten Things Never, Ever to reveal in a job interview by Liz Ryan. I agree with some of the pointers she voiced, but few might hurt the employee/employer relationship in the long run or may even be considered borderline unethical. This blog-post is an attempt to share my humble opinion while having experience as an entrepreneur & employee. Please read it with a pinch of salt, and do share your...
Read More

Interview Tips: You're in the interview room. Now what?

In my last blog post on Interview Tips: Prepare well before you take off, I reckon the facts you need to be sure off, before you reach the door of your next firm, or pick the call that will decide your next lap. Now, this blog post will focus on things to do during the interview, things that can make or break your attempt. It is imperative to prepare well for what do you want, what does the company do, and where you see yourself in few years. If this sounds new to you; please take a look at my...
Read More

Interview Tips: Prepare well before you take off!

I have been working in Information Security domain long enough to understand what is it about, and where most the candidates I interview fumble. So, if you have a technical skill-set, out-of-box thinking and the passion to work, you have an excellent chance to be hired. This article will help you to avoid common mistakes and make you present yourself better & sharper. Now, this blog post shall be covered in 3 parts - five common "preparation headsup" for the interview, five common points where you might stumble during your job meeting, and finally, some interview myths to...
Read More

Custom URL Shortner in NodeJS

Recently I wrote an article on Ghost blog integration with a URL shortener (the dirty way). This is in sequence to it but with custom URL shortener running on my own machine. While most of this code is shared from codebyte article, I have enhanced it to serve three purposes, Authenticate using API Key Validate URL(s) or ID(s) for duplicate Response support in JSON or TXT format At present the setup is running with the following configuration, Backend is running on port X @ IP 127.0.0.1 so it has no reach from outside. NGINX webserver is...
Read More

Image Alignment within Ghost Blog CMS

Its around 2:00 AM, and before I call it a day (a long day), I thought to post a quick blog on custom image alignment in Ghost Blog Platform. Without further ado, as of Sep, 2016 Ghost doesn't support custom image alignments and ruling. It means all images in the blog are aligned default (none) and text breaks around it. Default Alignment It means the images are aligned with the page, and the text breaks around it. The text is above and below the image. Left Alignment (left float) It means the image is floating on the left side,...
Read More

Custom URL Shortening in Ghost Blog CMS

It's been 2 years and Ghost Blogging Platform is doing well and the downloads are going up. Kudos to the team. While the platform is doing good, we[1] are miles from reaching the point where we have apps, plugins and smooth migrations/ customisation etc. And in this blog I would mention one such thing which I personally like - URL Shortener(s); specially when we share the links over social media. I have had discussions with some people on Ghost Slack on it, and thought why not do some dirty coding ;) Oh yeah, but why dirty coding? The Ghost...
Read More

Linux Issue with TCP ACK (Part 1)

A flaw in the Linux kernel[1] used since late 2012 allows adversaries to inject malicious traffic, without MITM. In a Wednesday presentation at the USENIX Security Symposium researchers showed that this flaw lies in the Transmission Control Protocol (TCP) used by Linux since late 2012. In their research paper - Off-Path TCP Exploits: Global Rate Limit Considered Dangerous, the researchers document possible use cases, and attack scenarios on how this global limit be exploited to perform connection drop and/or injection attacks. With so much buzz in the world, I will attempt to cover some network 101201 basics on...
Read More