A Car is Not Just a Vehicle

Personally I like cars 🚗 , not just to drive them wherever I want, but also because of how they make me feel, powerfull and flexible at the same time. Being a tech guy I have customised most of my cars, primarily from an entertainment perspective but also visually. As with one of my first cars, a Toyota Corolla 98 E11 hatchback, I was inspired by the legendary (in my opinion) Corolla WRC 97-99.

Before and after customising

I enjoy browsing car databases that simplify comparison, provide complete inventory and specifications are important when you are on the lookout for a new car or just want to review what new hot features are available.

I prefer these (in addition to traditional second hand markets):

A while ago I also postet my custom dipped Mini Cooper S, remeber?

The Ever Developing Tech Stack

Working with IT and system development security especially, the ever changing tech stack makes it hard to be up to date on what is trustworthy tools and not.

Stackshare is great in such a way they provide you with an overview of stacks and who is using what.

FireEye (Mandiant) Flare and Commando VMs

Started playing with the freely available VMs from FireEye. Seems like nice Windows based alternatives to Kali and Parrot OS for at least basic pentesting and forensics tools. Personally I like Kali for its sustainability in the market, frequent updates and tools arsenal. However Parrot has grown on me with its sleek design.

Anyways, it seems FireEye got a lot from acquiring Mandiant a while ago. The Redline toolkit is quite nice, so it will be interesting to see how these two plays out:

Commando VM is for penetration testing, see Github.

Flare VM is for malware analysis.

Is it Down?

From time to time we experience web sites and services are not working properly or is unavailable. To check if it’s me, my network, device, or the service itself I like Downdetector a lot. Based on user reports it is quite accurate and gives you a nice history of events if need be.

The NICE Cybersecurity Workforce Framework

The NICE (NICE Cybersecurity Workforce Framework) initiative is lead by NIST as an initiative to boost cybersecurity education. It offers tools to assess and build cybersecurity workforce in organizations, private and government and supports cross-sectoral efforts for information and competancy sharing as utilized by the Japanese, cool! A Japanese government driven Cross-Sectoral Forum picked the NIST Framework to build in-house cybersecurity positions and organisations.

I especially like the reference spreadsheet as it can be used to map work roles required for completeness and the associated relevant knowledge. Further NIST have preliminary work for training plans. Check it out!