John Petrucci

Senior Security Engineer

John Petrucci is a senior security engineer with Optiv’s MSS team. In this role he architects and supports solutions which enable the MSS and SIEM engineering teams to more effectively accomplish their work.

 

Check Point Kernel Debugging, In-Depth

· By John Petrucci ·

The following is a look into the features and inner-workings of debugging the Check Point firewall kernel. This information will prepare you to debug Check Point firewalls with more efficiency allowing you to readily identify relevant troubleshooting data. In the first section, I’ll discuss the different tools that allow you to peek under the hood and understand what’s going on inside the firewall.

Continue reading

Security Alert: Palo Alto Networks UDP Syslog Exploit

· By John Petrucci ·

An optional new feature for identifying users by means of syslog messages was introduced in PAN-OS 6.0 (January 2014). This feature is not enabled out-of-box, however unsafe configurations of the User-ID syslog listener on Palo Alto Networks firewalls can allow an attacker to inject arbitrary user-to-IP mappings, including impersonating any other user on the network or de-authenticating valid users.

Continue reading
(2 Results)