Publications
Books
Sistemas de Detección de Intrusiones, version 1.01 - July 2003. [pdf] [zip (pdf)] [zip (html)]
Extensive document of IDS written in Spansih language, licensed under GNU FDL. It covers several aspects of this computer security technologies: history, work metodology, implementation, legal aspects, advantages and disadvantages, future, etc.
Diapositivas sobre IDS, versión 1.0 - July 2003. Color [pdf]. B/W [pdf]
Slides used during the presentation of the above document.
Articles
Marco legal en Europa y España sobre delitos informáticos - June, 2003
Description of the legal aspects related to the new technologies in Spain, starting from its relationship with Europe. It is focused on computer security.
Receive-only UTP Cables and Network Taps - June, 2003. [pdf]
Cables UTP de sólo recepción y "Network Taps" - Junio, 2003. [pdf]
One of the disadvantages of a sniffer is that it may be detected by other hosts. There are a number of methods to avoid detection, one being configuring the sniffer without an IP address. But none of them are as effective as the use of receive-only (sniffing) cables. These cables allow a sniffer to watch network traffic without being detected. Therefore they prove very useful in environments with Intrusion Detection Systems (IDS) or honeypot technologies (such as Honeynets).
This article was published in the "The Hitchhiker's World" e-zine issue #9.
Building a GenII Honeynet Gateway - 11 August, 2004
This is a short guide to build a GenII Honeynet Gateway, also called a Honeywall, under Linux, broaching the most common problems and providing several solutions and tips.
Installing a Virtual Honeywall using VMware - 15 September, 2004
If the Honeywall CDROM is installed on a virtual machine, it will also include the many advantages that a virtual machine environment offers. This paper explains how to go about configuring VMware to deploy a Honeywall.
This article was published in the IT Observer site in January 2005.