Help
RSS
API
Feed
Maltego
Contact
Domain > puiterwijk.org
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2021-09-26
104.26.3.203
(
ClassC
)
2024-09-18
172.67.217.174
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyDate: Wed, 18 Sep 2024 05:31:30 GMTContent-Type: text/htmlContent-Length: 167Connection: keep-aliveCache-Control: max-age3600Expires: Wed, 18 Sep 2024 06:31:30 GMTLocation: https://puiterwijk.org/Report-To: {endpoints:{url:https:\/\/a.nel.cloudflare.com\/report\/v4?sNYsmBBKjaPGKCBUwFy6iDQOtSd89yDodoAb087Ds0yaJxx21buvmQ3GNrxJUser%2BP7dSPgleu7ZrWMughtpPaAP9zP8uHiXxlT2pYhLCfdjXR5ib770fXmPuWt1M1cK%2FFg%3D%3D},group:cf-nel,max_age:604800}NEL: {success_fraction:0,report_to:cf-nel,max_age:604800}X-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8c4ef33b685e30a5-SEAalt-svc: h3:443; ma86400 html>head>title>301 Moved Permanently/title>/head>body>center>h1>301 Moved Permanently/h1>/center>hr>center>cloudflare/center>/body>/html>
Port 443
HTTP/1.1 200 OKDate: Wed, 18 Sep 2024 05:31:30 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-aliveCache-Control: public, max-age0, must-revalidateLink: https://fonts.googleapis.com>; relpreconnectcontent-security-policy: report-uri https://puiterwijk.uriports.com/reports/report; report-to default; default-src none; connect-src self https://cloudflareinsights.com/cdn-cgi/rum; font-src https://cdn.jsdelivr.net https://fonts.gstatic.com; img-src self; script-src self unsafe-inline https://cdn.jsdelivr.net/ https://static.cloudflareinsights.com/; style-src self unsafe-inline https://cdn.jsdelivr.net/ https://fonts.googleapis.com/cross-origin-embedder-policy: unsafe-none; report-todefaultcross-origin-opener-policy: same-origin; report-todefaultcross-origin-resource-policy: same-originnel: {report_to:default,max_age:2592000,include_subdomains:true,failure_fraction:1.0}permissions-policy: Permissions-Policy: accelerometer(), ambient-light-sensor(), autoplay(), battery(), camera(), cross-origin-isolated(), display-capture(), document-domain(), encrypted-media(), execution-while-not-rendered(), execution-while-out-of-viewport(), fullscreen(), geolocation(), gyroscope(), keyboard-map(), magnetometer(), microphone(), midi(), navigation-override(), payment(), picture-in-picture(), publickey-credentials-get(), screen-wake-lock(), sync-xhr(), usb(), web-share(), xr-spatial-tracking(), clipboard-read(), clipboard-write(), gamepad(), speaker-selection(), conversion-measurement(), focus-without-user-activation(), hid(), idle-detection(), interest-cohort(), serial(), sync-script(), trust-token-redemption(), unload(), window-placement(), vertical-scroll()referrer-policy: strict-origin-when-cross-originreport-to: {group:default,max_age:10886400,endpoints:{url:https://puiterwijk.uriports.com/reports},include_subdomains:true}reporting-endpoints: defaulthttps://puiterwijk.uriports.com/reportsx-content-type-options: nosniffx-frame-options: DENYx-test: truex-xss-protection: 1; modeblockVary: Accept-EncodingCF-Cache-Status: DYNAMICStrict-Transport-Security: max-age31536000; includeSubDomains; preloadServer: cloudflareCF-RAY: 8c4ef33bddd5934e-SEAalt-svc: h3:443; ma86400 !DOCTYPE html>html langen dirltr >meta charsetutf-8>meta nameviewport contentwidthdevice-width, initial-scale1>title>Patrick Uiterwijk/title>meta namegenerator contentHugo Eureka 0.9.3 />link relstylesheet hrefhttps://puiterwijk.org/css/eureka.min.9cec6350e37e534b0338fa9a085bf06855de3b0f2dcf857e792e5e97b07ea905d4d5513db554cbc26a9c3da622bae92d.css>script defer srchttps://puiterwijk.org/js/eureka.min.fa9a6bf6d7a50bb635b4cca7d2ba5cf3dfb095ae3798773f1328f7950028b48c17d06276594e1b5f244a25a6c969a705.js>/script>link relpreconnect hrefhttps://fonts.googleapis.com>link relpreconnect hrefhttps://fonts.gstatic.com crossorigin>link relpreload hrefhttps://fonts.googleapis.com/css2?familyLora:wght@400;600;700&familyNoto+Serif+SC:wght@400;600;700&displayswap asstyle onloadthis.onloadnull;this.relstylesheet>link relstylesheet hrefhttps://cdn.jsdelivr.net/gh/highlightjs/cdn-release@11.4.0/build/styles/solarized-light.min.css mediaprint onloadthis.mediaall;this.onloadnull crossorigin>script defer srchttps://cdn.jsdelivr.net/gh/highlightjs/cdn-release@11.4.0/build/highlight.min.js crossorigin>/script> script defer srchttps://cdn.jsdelivr.net/gh/highlightjs/cdn-release@11.4.0/build/languages/rust.min.js crossorigin>/script>link relstylesheet hrefhttps://puiterwijk.org/css/highlightjs.min.2958991528e43eb6fc9b8c4f2b8e052f79c4010718e1d1e888a777620e9ee63021c2c57ec7417a3108019bb8c41943e6.css mediaprint onloadthis.mediaall;this.onloadnull>script defer typetext/javascript srchttps://puiterwijk.org/js/fontawesome.min.df0e0c9f4998ecc1cfe846c68edf2fb64df3421f5cedadb9eee9d20b5cb1306ec246276eed75e4e4d425137f9c65f018.js>/script>link relstylesheet hrefhttps://cdn.jsdelivr.net/npm/katex@0.15.2/dist/katex.min.css integritysha384-MlJdn/WNKDGXveldHDdyRP1R4CTHr3FeuDNfhsLPYrq2t0UBkUdK2jyTnXPEK1NQ mediaprint onloadthis.mediaall;this.onloadnull crossorigin>script defer srchttps://cdn.jsdelivr.net/npm/katex@0.15.2/dist/katex.min.js integritysha384-VQ8d8WVFw0yHhCk5E8I86oOhv48xLpnDZx5T9GogA/Y84DcCKWXDmSDfn13bzFZY crossorigin>/script>script defer srchttps://cdn.jsdelivr.net/npm/katex@0.15.2/dist/contrib/auto-render.min.js integritysha384-+XBljXPPiv+OzfbB3cVmLHf4hdUFHlWNZN5spNQ7rmHTXpd7WvJum6fIACpNNfIR crossorigin>/script>script> document.addEventListener(DOMContentLoaded, function () { renderMathInElement(document.body, { delimiters: { left: $$, right: $$, display: true }, { left: $, right: $, display: false }, { left: \\(, right: \\), display: false }, { left: \\, right: \\, display: true } , }); });/script>script defer srchttps://cdn.jsdelivr.net/npm/mermaid@8.14.0/dist/mermaid.min.js integritysha384-atOyb0FxAgN9LyAc6PEf9BjgwLISyansgdH8/VXQH8p2o5vfrRgmGIJ2Sg22L0A0 crossorigin>/script>link relicon typeimage/png sizes32x32 hrefhttps://puiterwijk.org/img/puiterwijk_hu6380ab48a45da38b9403f120f5481973_7314_32x32_fill_box_center_3.png>link relapple-touch-icon sizes180x180 hrefhttps://puiterwijk.org/img/puiterwijk_hu6380ab48a45da38b9403f120f5481973_7314_180x180_fill_box_center_3.png>meta namedescription contentSharing my paranoia>meta propertyog:title contentPatrick Uiterwijk />meta propertyog:type contentwebsite />meta propertyog:image contenthttps://puiterwijk.org/img/puiterwijk.png>meta propertyog:url contenthttps://puiterwijk.org/ />meta propertyog:description contentSharing my paranoia />meta propertyog:locale contenten />meta propertyog:site_name contentPatrick Uiterwijk />meta propertyog:updated_time content2021-04-11T15:00:00+00:00 />meta propertyarticle:section content />link relalternate typeapplication/rss+xml hrefhttps://puiterwijk.org/index.xml titlePatrick Uiterwijk /> body classflex min-h-screen flex-col> header classmin-h-16 pl-scrollbar bg-secondary-bg fixed z-50 flex w-full items-center shadow-sm > div classmx-auto w-full max-w-screen-xl>script> let storageColorScheme localStorage.getItem(lightDarkMode) if (((storageColorScheme Auto || storageColorScheme null) && window.matchMedia((prefers-color-scheme: dark)).matches) || storageColorScheme Dark) { document.getElementsByTagName(html)0.classList.add(dark) }/script>nav classflex items-center justify-between flex-wrap px-4 py-4 md:py-0> a href/ classme-6 text-primary-text text-xl font-bold>Patrick Uiterwijk/a> button idnavbar-btn classmd:hidden flex items-center px-3 py-2 aria-labelOpen Navbar> i classfas fa-bars>/i> /button> div idtarget classhidden block md:flex md:grow md:justify-between md:items-center w-full md:w-auto text-primary-text z-20> div classmd:flex md:h-16 text-sm md:grow pb-4 md:pb-0 border-b md:border-b-0> a href/authors/puiterwijk classblock mt-4 md:inline-block md:mt-0 md:h-(16-4px) md:leading-(16-4px) box-border md:border-t-2 md:border-b-2 border-transparent me-4>About/a> a href/posts/ classblock mt-4 md:inline-block md:mt-0 md:h-(16-4px) md:leading-(16-4px) box-border md:border-t-2 md:border-b-2 border-transparent me-4>Posts/a> /div> div classflex> div classrelative pt-4 md:pt-0> div classcursor-pointer hover:text-eureka idlightDarkMode> i classfas fa-adjust>/i> /div> div classfixed hidden inset-0 opacity-0 h-full w-full cursor-default z-30 idis-open> /div> div classabsolute flex flex-col start-0 md:start-auto end-auto md:end-0 hidden bg-secondary-bg w-48 rounded py-2 border border-tertiary-bg cursor-pointer z-40 idlightDarkOptions> span classpx-4 py-1 hover:text-eureka nameLight>Light/span> span classpx-4 py-1 hover:text-eureka nameDark>Dark/span> span classpx-4 py-1 hover:text-eureka nameAuto>Auto/span> /div> /div> /div> /div> div classfixed hidden inset-0 opacity-0 h-full w-full cursor-default z-0 idis-open-mobile> /div>/nav>script> let element document.getElementById(lightDarkMode) if (storageColorScheme null || storageColorScheme Auto) { document.addEventListener(DOMContentLoaded, () > { window.matchMedia((prefers-color-scheme: dark)).addEventListener(change, switchDarkMode) }) } else if (storageColorScheme Light) { element.firstElementChild.classList.remove(fa-adjust) element.firstElementChild.setAttribute(data-icon, sun) element.firstElementChild.classList.add(fa-sun) } else if (storageColorScheme Dark) { element.firstElementChild.classList.remove(fa-adjust) element.firstElementChild.setAttribute(data-icon, moon) element.firstElementChild.classList.add(fa-moon) } document.addEventListener(DOMContentLoaded, () > { getcolorscheme(); switchBurger(); });/script>/div> /header> main classgrow pt-16> div classpl-scrollbar bg-primary-bg > div classmx-auto max-w-screen-xl> div idposts classlg:w-3/4 mx-auto px-6 md:px-8 xl:px-12 py-12 > h2 class font-bold text-3xl my-4>Posts/h2> div classoverflow-hidden> div classmb-6> div classbg-secondary-bg rounded border hover:shadow-lg transition ease-in-out duration-200 px-6 pt-6 pb-4> div classflex flex-col-reverse lg:flex-row justify-between> div classw-full > div classprose> a hrefhttps://puiterwijk.org/posts/tpm2-attestation-keylime-vulnerability/ classno-underline> h3 classmt-0>TPM2 Key Trust: where did Keylime go wrong/h3> /a> In my previous blog post , I explained how a verifier can get a signing key that it trusts is on a TPM for attestation (part 2 of the other post in the making).I have been contributing to a specific implementation of remote attestation for Linux, called Keylime .As part of the effort on porting the agent to Rust, I was looking into how the process works, and as part of that I identified a vulnerability in how Keylime deals with the TPM2 that breaks the Chain of Trust in two different places. div classtext-tertiary-text not-prose mt-2 flex flex-row flex-wrap items-center> div classme-6 my-2> i classfas fa-calendar me-1>/i> span >2021-02-24/span > /div> div classme-6 my-2> i classfas fa-clock me-1>/i> span>6 min read/span> /div> div classme-6 my-2> i classfas fa-folder me-1>/i> a hrefhttps://puiterwijk.org/categories/vulnerability-research/ classhover:text-eureka >Vulnerability Research/a > /div> /div> /div> /div> /div>/div>/div>div classmb-6> div classbg-secondary-bg rounded border hover:shadow-lg transition ease-in-out duration-200 px-6 pt-6 pb-4> div classflex flex-col-reverse lg:flex-row justify-between> div classw-full > div classprose> a hrefhttps://puiterwijk.org/posts/tpm2-attestation-keys/ classno-underline> h3 classmt-0>TPM2 Attestation Keys/h3> /a> Part 1 of a 2-part series on TPM attestationBackground These days, the Trusted Platform Module (TPM) is a pretty ubiquitous piece of hardware. This is thanks in part due to Microsoft requiring it since 2016 for Windows 10 (https://docs.microsoft.com/en-us/windows-hardware/design/minimum/minimum-hardware-requirements-overview#37-trusted-platform-module-tpm) .The TPM enables very interesting security features, like decryption/signing of data, key exchange protocols, and more, without handling the private key in software.One of the other big things a TPM can be used for is attesting a server to a remote server. div classtext-tertiary-text not-prose mt-2 flex flex-row flex-wrap items-center> div classme-6 my-2> i classfas fa-calendar me-1>/i> span >2021-02-24/span > /div> div classme-6 my-2> i classfas fa-clock me-1>/i> span>5 min read/span> /div> div classme-6 my-2> i classfas fa-th-list me-1>/i> a hrefhttps://puiterwijk.org/series/tpm2-attestation/ classhover:text-eureka >TPM2 attestation/a > /div> /div> /div> /div> /div>/div>/div>div classmb-6> div classbg-secondary-bg rounded border hover:shadow-lg transition ease-in-out duration-200 px-6 pt-6 pb-4> div classflex flex-col-reverse lg:flex-row justify-between> div classw-full > div classprose> a hrefhttps://puiterwijk.org/posts/bios-security-settings/ classno-underline> h3 classmt-0>BIOS Security Settings/h3> /a> Over the years, I have given people advice over some settings in their laptops BIOS they might want to tweak for security purposes.I believe that many consumer devices ship with the secure settings (though I have none to test myself), but I know that at least some companies request custom configuration. As a consequence, I will list settings that I suggest to modify to improve security, and figured I might as well publish this, also so that I remember everything myself when I get a new laptop. div classtext-tertiary-text not-prose mt-2 flex flex-row flex-wrap items-center> div classme-6 my-2> i classfas fa-calendar me-1>/i> span >2019-02-12/span > /div> div classme-6 my-2> i classfas fa-clock me-1>/i> span>5 min read/span> /div> /div> /div> /div> /div>/div>/div> div classpx-8 pt-2 hover:text-eureka> a hrefhttps://puiterwijk.org/posts/ classfont-semibold>Read More/a> i classfas fa-caret-right ms-1>/i> /div> /div> /div> /div> /div> /main> footer classpl-scrollbar> div classmx-auto w-full max-w-screen-xl>div classtext-center p-6 pin-b> p classtext-sm text-tertiary-text>© 2023 Patrick Uiterwijk · Powered by the a hrefhttps://github.com/wangchucheng/hugo-eureka classhover:text-eureka>Eureka/a> theme for a hrefhttps://gohugo.io classhover:text-eureka>Hugo/a>/p> p classtext-sm small>Last rebuild: 2023-12-09T19:37:52+00 /p>/div>/div> /footer> !-- Cloudflare Pages Analytics -->script defer srchttps://static.cloudflareinsights.com/beacon.min.js data-cf-beacon{token: 69ce8dda6e5a4f4fb64da9e7900e6c57}>/script>!-- Cloudflare Pages Analytics -->/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]