A few days ago, I wrote about what GreyNoise have been calling “Noise Storms,” extended periods of high-volume ping traffic detected by many of their sensors, coming from…many different sources. The most intriguing of these were packets with the word “LOVE” in plaintext in the ping payload, and in my post, I offered a possible explanation of that traffic. At least, at a technical level – what they’re doing with those packets, well, that’s a different puzzle.
Earlier this month, I attended BSidesNoVA in Arlington, where the keynote was presented by Andrew Morris of GreyNoise. Using sensors distributed all over the world, GreyNoise collects…background noise…on the Internet. Basically, they watch and monitor activity that hits lots of hosts randomly – network mapping, port scanning, doorknob rattling. If you see someone trying to break into your SSH server, you can check GreyNoise to see if that person (well, their IP, anyway) has been seen doing such things in the past.
Back in 2018, I was fortunate enough to join a company called Expel. It had a great culture, friendly management with a real desire to do what’s right for customers and employees, and a product that seemed to fill a real need – and to fill it well.
Being remote friendly even in 2018, we were ready when the pandemic hit, and it seemed like we made it out the other side unscathed. But then we hit some snags, and in June 2023, I got laid off, along with 10% of my co-workers.
Nov 12, 2018 - 1900 Words -
It occurred to me sometime after I’d finished my talk that I should have a single post that pulls all the elements together. So here’s a complete walkthrough from Master Password all the way to decrypted Vault Item.
If you’ve missed the first parts of the series, here’s a good starting point.
First, let’s review the overall sequence of events. It’s a little complicated at the beginning, depending on which client we’re using.
Nov 9, 2018 - 100 Words -