How to get your Certificate and Private Key file from a PFX file

How to get your Certificate and Private Key file from a PFX file

The filename extensions for PKCS #12 are *.PFX or *.P12 and both are the most common bundles of  X.509  certificates (sometimes with the full chain of trust) and private key.

I always need to look at the man page of OpenSSL or review my bash history to use the right options to extract a certificate file and a key file from it.

For this reason, I’ve created a small bash script to complete this step for me.

Continue reading “How to get your Certificate and Private Key file from a PFX file”

CVE-2019-18935 – Using Powershell to review IIS and Windows Logs (Searching for IoC)

CVE-2019-18935 - Using Powershell to review IIS and Windows Logs (searching for IoC)

This article can be considered a Cyber-Security article more than a Software Development one for the content and part of the vocabulary that will be used but don’t be scared. I wanted to keep it very practical and to give you a simple example of what type of tools everyone can build or use in certain scenarios like in CyberSec and Incident Response. Continue reading “CVE-2019-18935 – Using Powershell to review IIS and Windows Logs (Searching for IoC)”

Updating Windows Subsystem for Linux (WSL2)

I must admit that I’m a very strong fan of Windows Subsystem for Linux (WSL) 2.  It’s definitely something I’m happy to use every single day, regardless that I have few Linux VMs and a couple of apps running in docker containers on my workstation.

I cannot say that the new version has substantially reduced the number of tools yet, but there is the chance that in the future WSL2 and (Linux) docker containers will be the only things running all the time on my system. The Hypervisor will be just used for running some VMs on demand when needed.

Continue reading “Updating Windows Subsystem for Linux (WSL2)”