https://blog.099c.org/tags/security/ Recent content in Security on Apuntes de root Hugo en-US jorti@pm.me (Juan Orti Alcaine) jorti@pm.me (Juan Orti Alcaine) Fri, 06 Mar 2026 09:14:09 +0100 https://blog.099c.org/posts/bulwark-block-attacking-ips-at-router-level/ Fri, 06 Mar 2026 09:14:09 +0100jorti@pm.me (Juan Orti Alcaine) https://blog.099c.org/posts/bulwark-block-attacking-ips-at-router-level/ <p>Inspired on Crowdsec firewall bouncer, and also with the intention of learning some Rust, I&rsquo;ve created <a href="https://codeberg.org/jorti/bulwark">Bulwark</a>, a small program to run in a OpenWrt router (or any Linux machine) to ban IPs of attacks detected by my servers.</p> https://blog.099c.org/posts/from-fail2ban-to-reaction/ Tue, 03 Mar 2026 16:35:37 +0100jorti@pm.me (Juan Orti Alcaine) https://blog.099c.org/posts/from-fail2ban-to-reaction/ <p><a href="https://github.com/fail2ban/fail2ban">Fail2ban</a> has been an important security tool I&rsquo;ve been using in my servers for many years. However sometimes is difficult to configure, lacks certain features and can consume too many resources.</p> <p>Recently I&rsquo;ve switched to <a href="https://reaction.ppom.me/">Reaction</a>, a new tool with the same philosophy: monitor logs and execute some actions based on log matches. Reaction is written in Rust, so it&rsquo;s fast and resource efficient.</p> https://blog.099c.org/posts/sandbox-steam-running-it-under-a-different-account/ Thu, 14 Jul 2016 00:00:00 +0000jorti@pm.me (Juan Orti Alcaine) https://blog.099c.org/posts/sandbox-steam-running-it-under-a-different-account/ <p>To improve my system&rsquo;s security, I&rsquo;ve configured Steam to be run as a different Linux account. This guide is inspired in <a href="https://www.reddit.com/r/linux_gaming/comments/46agy3/running_steam_as_another_user/">this thread</a>.</p> https://blog.099c.org/posts/export-non-exportable-private-keys-from-windows-key-store/ Tue, 16 Dec 2014 00:00:00 +0000jorti@pm.me (Juan Orti Alcaine) https://blog.099c.org/posts/export-non-exportable-private-keys-from-windows-key-store/ <p>When I was looking for a utility to export the non-exportable private keys in Windows, I found the <a href="https://github.com/gentilkiwi/mimikatz" title="mimikatz">mimikatz</a> tool, which enabled me to do that and a lot more.</p> <p>To export the private keys, run mimikatz as administrator and type:</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-gdscript3" data-lang="gdscript3"><span class="line"><span class="cl"><span class="n">crypto</span><span class="p">::</span><span class="n">capi</span> </span></span><span class="line"><span class="cl"><span class="n">crypto</span><span class="p">::</span><span class="n">certificates</span> <span class="o">/</span><span class="k">export</span> </span></span></code></pre></div><p>And you&rsquo;ll get the certicates exported with the password mimikatz. You can also export the machine certificates with <code>/systemstore</code> flag. See the <a href="https://github.com/gentilkiwi/mimikatz/wiki/module-%7E-crypto#certificates" title="mimikatz certifcates">wiki</a> for more info.</p> <p>This tool is detected as a threat by many antivirus, so you&rsquo;ll have to probably disable yours before using it.</p>