This week a client forwarded me a spam email he received that I thought was kind of interesting. It is reproduced below, with sensitive information and spam links redacted out:

Read the rest of this entry »

I just stumbled onto this comment in a client’s WordPress database, and thought it was kind of interesting. It looks like a spam bot malfunctioned such that it output all of (or at least, a large portion of) its spam comments. They are reproduced below:

Read the rest of this entry »

I’ve been working on a tool that I call “Watchtower” for the last several weeks. Watchtower is a platform- and language-agnostic Static Code Analysis tool that can be used for code audits and incident-response. The project is hosted here:

https://github.com/chrisallenlane/watchtower

Check out the README to get a feel for how it works.

In the meantime, that’s all I can say, because I’m hoping to publish a more detailed introduction in an upcoming issue of 2600. If that submission is rejected, more details will later be made available here.