https://guilhermeborges.net/ Recent content on Guilherme Borges Hugo -- gohugo.io en-gb Mon, 28 Dec 2020 15:02:10 +0000 https://guilhermeborges.net/delving-phishing-emails/ Mon, 28 Dec 2020 15:02:10 +0000 https://guilhermeborges.net/delving-phishing-emails/ Recently I’ve been contacted by a friend about his email account; he was suddenly unable to send any email. I initially suspected some sort of SMTP misconfiguration, but I then learned he was using Office365, so that wouldn’t be the case. Maybe there was some weird filtering rule set up accidentally? First victim: The “Phisher” Logging into his account seemed fine, but what first caught my eye were some foreign emails he had received, from institutions around the world I knew he had no business contacting. https://guilhermeborges.net/cowrie/ Wed, 28 Aug 2019 16:05:10 +0100 https://guilhermeborges.net/cowrie/ (This post is a facsimile of the one we posted in cowrie.org) These past months I’ve been working in the Google Summer of Code program with The Honeynet Project, in a project called Cowrie, about which I’ve talked in a previous post. Cowrie, in turn, is maintained by Michel Oosterhof, with whom I really had the pleasure of working these past months. Whew, that was a mouthful of links, but I’ve got my references done with for now… I have talked about the experience in the official report, so this post will focus a bit more on the technical challenges I faced and my main takeaways, as well as serving to showcase the new features that have been added. https://guilhermeborges.net/accidental-http-honeypot/ Fri, 12 Jul 2019 00:04:28 +0100 https://guilhermeborges.net/accidental-http-honeypot/ Lately I’ve been busy with some projects (some with my dear friend Gonçalo Tomás), which may be the subject of other posts later in the Summer. One of such projects is built on top of AWS, using services ranging from Lambdas to CloudFront, S3, API Gateway, etc. I won’t talk much about these services for now, but one of my favourite features of CloudFront (or AWS in general) is how easily every service plugs in with others. https://guilhermeborges.net/open-to-the-world/ Mon, 18 Mar 2019 22:00:02 +0000 https://guilhermeborges.net/open-to-the-world/ Recently I’ve taken an interest on real-word security and, in particular, deception mechanisms such as honeypots. I have a personal network at home with some Raspberry Pis and a NAS, and sometimes I have to access them from elsewhere in the world, so naturally I exposed one of the Raspberries to the scary Internet. It only serves as a headnode, and only has SSH enabled (on a non standard port - although that’s security-by-obscurity, I never get connections attempts, and even if I did, they still would have to use PubKey Authentication and cross fail2ban 😉 ). https://guilhermeborges.net/hello/ Wed, 27 Feb 2019 22:14:29 +0000 https://guilhermeborges.net/hello/ Hey there! I’ll see if I can come up with some interesting things to write here. https://guilhermeborges.net/about/ Wed, 27 Feb 2019 22:13:16 +0000 https://guilhermeborges.net/about/ I’m a first year Computer Science PhD student at FCT NOVA. I love security and everything related, and I’m always looking to expand my knowledge in those areas. When I’m not at work I like to think and research about history and art (music, painting and photography in particular). You can find more about what I do in: Twitter: @gborgespt GitHub: sgtpepperpt GitLab: sgtpepperpt My Research Page Contact me at guilherme@guilhermeborges.