passbe.com

Ben Passmore

Incident response, coder and hacking all the things. Everything security and tech.

Latest Posts

Atom/RSS Feed

BitScout - Remote incident response and digital forensics toolkit

23 Feb 2018 1 min security, incident-response

BitScout is a live CD/USB bootable image that enables incident responders to remotely triage systems whilst maintaining data integrity...

Logstash prune filter with json data

11 Jan 2018 1 min logstash, elk

When importing JSON data structures into Logstash you can run into some troubles using the logstash-filter-prune plugin...

Open Source Intelligence and Stock Market correlations

27 Oct 2017 1 min osint, conference

Can insight into the stock market be gained by using Open Source Intelligence to track company stock levels? A failed experiment but interesting concept...

Actor name generator - Threat Roulette

18 Aug 2017 - Updated: 1 Apr 2020 1 min humour, security, incident-response

For all those threat intelligence folk that need attribution with a hip actor name...

Multizone - a utility for working in multiple time zones

7 Jan 2017 1 min incident-response, security

Working in multiple time zones can be difficult. I required a utility that would allow me at a glance to see the current date and time of a zone. Multizone is a simple bash script to fulfil this requirement...

Logstash slow start-up times and exhausting entropy

21 Dec 2016 1 min logstash, elk

I spent the better part of two hours debugging a non-responsive Logstash instance. Turns out it was just slow and /dev/random was the culprit...

Kiwicon X - the closing

10 Dec 2016 1 min conference, security

In November 2016 I attended Kiwicon X, the 10th iteratoin of New Zealands premier security conference. With 6.3 magnitude earthquake and electromagnetic guns itw as sure an interesting time...