‘Nmap 6: Network Exploration and Security Auditing Cookbook’ is on pre-sale now!

I’m very pleased to inform you that “Nmap 6: Network Exploration and Security Auditing Cookbook” is on pre-sale now.

About the book

This book is for any security consultant, administrator or enthusiast looking to learn how to use and master Nmap and the Nmap Scripting Engine. It is divided in practical tasks or “recipes” with full code explanations, specific Nmap commands and images to illustrate the topics.

What will you learn from the recipes covered?

Nmap’s functionality is vast. The following topics are covered in over 120 practical tasks included in this book:

  • Nmap basics
  • Host discovery techniques
  • Information gathering tasks for pentesters
  • Performing security checks to web, database and mail servers
  • Implementing a host monitoring system with Nmap, Ndiff and Bash scripting
  • Distributing Nmap scans among several clients
  • Collecting HTTP header information
  • Tuning scans
  • Generating reports
  • Writing your own scripts

For more recipes, visit the full table of content of ‘Nmap 6: Network Exploration and Security Auditing’.

Pre-order your copy now!

PacktPub: Nmap 6: Network Exploration and Security Auditing Cookbook


PacktPub Open Source royalties

I thought I should let you know that PacktPub offers a porcentage of the sales back to the open source projects such as Nmap. That means that by buying the digital or printed version of this book you also help the Nmap project!


A lot of work is behind this publication and I would like to thank those people who deserve credit for their hard work ( I owe you a beer) :

  • Fyodor: Thank you for guiding me through Google’s Summer of Code. It was a great learning experience and no one of this would have happened without you.
  • David Fifield: Thank you for all the help and sharing your expertise with me.
  • Patrik Karlsson: Many of the scripts and libraries shown in this book were written by you. Keep up the awesome work!
  • Tom Sellers: Thank you for your support and help with testing things!
  • Patrick Donnelly: Thank you for all the help with Lua.
  • Djalal Harouni: Thank you for helping me with the Exim vulnerability
  • Vlatko Kosturjak: Thank you for porting Nmap to Android!
  • Henry Doreau: Thank you for all the hard work you’ve put into Nmap.
  • Ange Gutek: Thank you for all the help with http-slowloris!
  • Marc Ruef: Thank you for helping me with vulscan!
  • Ron Bowes: Thank you for all your help
  • Daniel Miller: Thank you for all your great contributions to Nmap!
  • El draco: Thank you for sharing your knowledge of distributed scanning and letting me use Dnmap’s official diagrams!
  • Carlos Ayala: Thank you for your time while reviewing this book and sharing your IPS/IDS/FW expertise with me.
  • Pedro Joaquín & Roberto Salgado: Thank you for all the extra work you had to put at Websec to cover me while I worked on this
  • Renata Gomez: For sending the cover image of this book!
  • Nmap community: Thank you to all of you from bug reporters to contributors. You all help Nmap be an excellent and very active open source project
  • Packtpub: Thank you for the opportunity!

Les presento… LectorBunsen

¿Qué es LectorBunsen?

Es un lector no-oficial del comic Bunsen que se caracteriza por:

  • Ser ligero.

  • Permite navegar entre comics facilmente

  • Lista de favoritos
  • Es gratis =)

¿Cuanto cuesta?

Es totalmente gratis! La aplicación esta bajo la licencia GPL y el icono bajo CreativeCommons.

Código fuente y recursos

La aplicación usa una librería llamada ComicViewer y puedes descargarte el código fuente del siguiente repositorio Github:


Pueden descargar la aplicación desde Google Play: https://play.google.com/store/apps/details?id=com.calderonpale.lectorbunsen

Creditos especiales

Jorge Pinto – Creador de Bunsen

7a semana de la seguridad informá¡tica FES Aragón UNAM

Tuve el placer de participar con hkm en la 7a Semana de la Seguridad Informática del FES Aragón UNAM. Nuestra conferencia tenía el título “Análisis de seguridad de ruteados populares en México” y cubrimos estadísticas de dispositivos populares, así como vulnerabilidades interesantes en ruteadores marcas 2wire, Huawei y TP-Link.

Aquí podrán encontrar el material de nuestra presentación y de otras buenas conferencias de este evento:

Gracias al equipo organizador por la invitación y a todos los que nos acompañaron por allá.

bcbus goes open source

BCBus is an Android application I developed to have BCTransit’s schedules on my phone for offline access. BCBus is my first Android project and a very important part of my learning experience with the Android OS as I had to play around with layouts, intents, async tasks, row views, sqlite interaction and memory optimization.

Going open-source

I’ve been living in México for over a year now and I simply no longer have the required time to maintain and update this application. For this reason I’d like to share the code with the world and maybe someone will find it useful and learn from it. I also encourage anyone who might be interested in picking up this project to reach out to me for more information.

Existing paid users

Since it wouldn’t be fair to you, I will keep up to date the schedules of your current cities. Please contact me to let me know if you are having issues with some of the schedules.

Github repository


Special credits

  • Renata Gomez for helping me with the dashboard icons

  • Guenther Beyer from androidicons.com for helping me with the design of an awesome icon and graphics for the dashboard

  • CBC for interviewing me on one of their radio shows and help me spread the word.