are probably only useful in a corporate setting.
At the moment this page is just an extension of my CV. Disclaimer: I am not a web designer! Also, this site is hosted at home, so it can be unavailable every now and then.
I registered this domain because I had a lot of good times on tjalk Boppelans. I like sailing.
Other hobbies are walking, cycling, lockpicking and experimenting with Arduinos, Raspberry Pies and such, usually in combination with a lot of bright LEDs and Lego.
I really like Vestland i Norge. I spent a lot of time in Bergen and Norheimsund with its beautiful fjords, snow capped mountains and waterfall.
I also visited Odda, Eidfjord, Førde, Voss, Stavanger and Oslo several times.
Here are some tools and websites I use a lot. Items with a are probably only useful in a corporate setting.
| Local software | Web apps | Information | Web tools | Practice |
|---|---|---|---|---|
| 1Password - password manager | RedSift - DKIM, DMARC, SPF, Attack surface management |
Exploit DB | CyberChef - encode, decode | PicoCTF |
| Arduino IDE | Intigriti - bugbounty |
CISecurity - MacOS / Linux / Windows hardening | BinVis - binary file analysis | HackTheBox |
| Burp Suite - web proxy / MITM tool | Rapid 7 insighConnect, insightIDR (SIEM and XDR), insightVM (vulnerability management) |
CVEdetails | dCode - decypher coded messages | DVWA - damn vulnerable web application |
| GnuPG - encrypted communication | Nessus - vulnerability scanner | MITRE Attack framework | Quipqiup - cryptogram solver | OWASP Juice shop |
| Hex Fiend - hex editor |
Hoxhunt - phishing awareness |
Security.NL | Online JavaScript Beautifier | |
| OWASP ZAP - web proxy | Joe Sandbox - malware analysis | ARStechnica | DNSviz - DNSsec checker | |
| Forti VPN - VPN |
Cloudflare - DNS, proxy, WAF |
Tweakers | Internet.NL - IPv6, DNSsec, HTTPS, RPKI checker | |
| UTM - virtualization on MacOS ARM, based on Qemu | AWS - virtualization in the cloud |
The Register | QR.io - create QR-codes | |
| VMware Fusion - virtualzation on MacOS x86, based on Qemu | Sentinel One - end point protection |
The Hacker News | CRT.sh - find issued SSL-certificates | |
| Wireguard - VPN | GuardiCore - network segmentation |
Bleeping Computer | MXtoolbox - Email checker | |
| Wireshark - packet sniffer | Any run - malware analysis | IusMentis blog | ||
| Yubikey Manager | Netkwesties | |||
| Slack - collaboration |
The Verge | |||
| MatterMost - collaboration | Dark Reading | |||
| nikto, gobuster, tcpdump, John the Ripper, openssl, THC-Hydra, sqlmap, nmap | Tech Dirt | |||
| Bhyve - virtualization for FreeBSD amd64, based on Qemu | ||||
Products I have quite some experience with are Juniper firewalls (SRX-series), routers (T, M and MX-series) and switches (EX-series). I have also experience with Cisco routers and switches and Arista switches.
Already since the nineties I am interested in virtualization, especially how a hyperviser can hide the fact that it is there and how a guest can detect that it is running under a hypervisor. This is important for malware research. I already used VMware on my Sony PCG-F707 with an Intel Pentium III when I was a pentester for ITSX, the Information Technology Security Experts.
I also was always interested in cryptography. At the Twente University I experimented with the first versions of PGP (Pretty Good Pivacy), invented by Phil Zimmermann in 1999. I also researched a predecessor of IPsec, SCIP (not this one).
I have done commercial programming in Pascal, Delphi, C and another language that starts with C that I don't want to talk about. I am not a developer. These days I write scripts in Python and bash, but just as tools for my work.
My plans for this year are getting certifications for
(In the last few years I already obtained CISSP, CIPP/E, CIPM, Cisco Ethical Hacker and two Akamai certificates.)
I want to learn more about the programming language Lua and about Operational technology (OT).
Being a safety nerd, I also created a website with some sad, funny, dangerous situations. Later I learned that these showers are not that dangerous as long as the earth wire is connected, the water comes out in drops and is not salty.
Around the year 1999 I learned to use NetBSD, I think it was version 1.4, with the kernel on one floppy and the root file systen on another. It was on an Intel 486.
At the time, the computer lab at the university had a lot of SUN workstations, a few HP workstations and one Pentium 66.
After some frustrations, mainly with updating and ZFS, I switched to FreeBSD for computers with the amd64 architecure. I still have remains of adventures.
I have been using Linux since kernel version 0.99.13p in 1998. My first distribution was Yggdrasil and then I switched to Slackware.
Professionally I used Debian for stable functions, CentOS for lawful interception and Ubuntu for applications that could not wait for Debian.
There is also my computer history and old bookshelf. I know that half the links are dead, but so is my old ISP and ex-employer XS4ALL and I dont know how to update the page.
In 1999 I started lockpicking with a group of the Hippies from Hell. And despite I am not very good at it, it gives a big kick to open a lock or create a working key with impressioning techniques. It is similar to the kick you get from successfully hacking a computer.
In 2002 I was a founder and the first secretatry of the new organisation TOOOL.