February 22, 2017

ShmooCon 2017 report

ShmooCon is a security conference held yearly in Washington, DC. With around 2000 participants, it has an audience large enough to fill 3 tracks and provide a range of extra-curricular activities, yet it is much less crazy than events like DefCon (which is ten times the size). ... Read more

May 12, 2016

Infrastructure secret management software overview

Currently, there is an explosion of tools that aim to manage secrets for automated, cloud native infrastructure management. Daniel Somerfield did some work classifying the various approaches, but (as far as I know) no one has made a recent effort to summarize the various tools. This is an attempt to give a quick overview of what can be found out there. The list is alphabetical. There will be tools that are missing, and some of the facts might be wrong–I welcome your corrections. For the purpose, I can be reached via @maxvt on Twitter. ... Read more

September 4, 2015

Finding interesting events in Boston

This is a short collection of links I used to keep myself entertained while living in Boston. Hopefully they will help you find something interesting to do in your free time there. The order is roughly the frequency I visited those sites to find something good. ... Read more

April 11, 2015

iCTF 2014-2015 writeup: temperature

This is a warmup-level challenge written in Python. The service opens a TCP socket on port 56098 and listens for commands to store or read a temperature reading based on time and location. The data is stored into a single flat file. Simply interacting with the service over telnet would not work, as the service only attempts to read once. The protocol is very easy to reconstruct by reading the source, though, and writing a small client to store and load data takes all of two minutes. ... Read more

April 9, 2015

The Apple tax, 2015 edition

The following table compares the current compact (13”) Retina MacBook Pro to potential alternatives. The current price premium for buying Apple as compared to similarly configured other brands is only 2-6%, compared with 40% in my 2010 calculation. ... Read more

January 9, 2014

First post from a new home

This domain has lain unused for quite a while (about eight years, to be exact). I have always intended it to host a personal site, unlike the business-oriented maxvt.com, but life constantly got in the way. Two events had to happen in order to overcome the inertia and break ground on this project. ... Read more