Thoughts of Trevor Iwaszuk.

by Trevor

100% TLS Enabled

Secure LockWhile I barely utilize this site for blogging, I do occasionally use this site host special side projects as well the domain for one of my primary personal email accounts. As of last night I finally got around to purchasing a certificate and enabling TLS/SSL for this website. Now you may post visit my site, post comments, with little to no concern that people are snooping into your actions while on my site.

Let's EncryptWhile Let’s Encrypt services are not yet fully available, I would highly recommend anyone hosting their own site to consider securing their transport layer. I went the traditional route of purchasing a certificate, but Let’s Encrypt has a great mission of “securing” the web. I’d encourage everyone to look into the organization by either enrolling or donating. We should strive to have a fully encrypted web by 2020!

From their site:

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. Let’s Encrypt is a service provided by the Internet Security Research Group (ISRG).
The key principles behind Let’s Encrypt are:

  • Free: Anyone who owns a domain name can use Let’s Encrypt to obtain a trusted certificate at zero cost.
  • Automatic: Software running on a web server can interact with Let’s Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal.
  • Secure: Let’s Encrypt will serve as a platform for advancing TLS security best practices, both on the CA side and by helping site operators properly secure their servers.
  • Transparent: All certificates issued or revoked will be publicly recorded and available for anyone to inspect.
  • Open: The automatic issuance and renewal protocol will be published as an open standard that others can adopt.
  • Cooperative: Much like the underlying Internet protocols themselves, Let’s Encrypt is a joint effort to benefit the community, beyond the control of any one organization.

by Trevor

AD FS SAML Extractor

Updated link to tool.

A while back I used to spend a lot of my time trying to extract and parse out SAML tokens from HTTP posts to AD FS.  I used to do a series of manual cleanups, deletions, finds & replaces (etc.) in a text editor, but it became such a tedious process.  I went ahead and built a simple web application to help do that for me and wanted to share with the public.

You can use the page above to paste in your captured form posts (disable off JavaScript after you submit credentials, view source, and copy & paste into this form), and it will parse out the XML contained within the post and clean up the encoding.

Hope it is helpful to someone

by Trevor

Phonetic Translator

Many times I need to give people exact spellings of text, such as complex passwords, over the phone.  I don’t have the NATO phonetic alphabet memorized, so I thought it’d be great if I have a utility to help me.

For example, if the text I wanted to spell out was “My$up3RP@ssword,” I would read this as “capital mike, yankee, dollar sign,  uniform, papa, three, capital romeo, capital pap, at sign, sierra, sierra, whiskey, oscar, romeo, delta.”

Doing that all in your head (at least for me) is exhausting!   A program would be much more effective!

Phonetic Conversion Example

I ended up writing a program that does just this with minimal effort.  You can install it through a ClickOnce deployment here:

by Trevor

What is your behavior type?

Occasionally I use these to help me out to figure how to approach someone. It’s sometimes useful and kinda fun to think about, especially when your friends know about them too.

Focus is their overall goal. Strength is self explanatory. Needs is what a person of that type needs from someone else or in a situation. Do’s are what you should do when interacting with a person of that type. Do Nots are what you should try to avoid doing when interacting with them. Continue Reading →