Blog

  • Crawler: Seekport Bot

    Crawler: Seekport Bot

    In my access logs, I found excessive requests from IP address 65.108.99.119. During a regular review, I also found this IP is listed on AbuseIPDB, which indicated it has a lower reputation or may even be malicious. The reverse PTR was also not very valuable.

  • What is Mozilla/5.0 Optimizer

    What is Mozilla/5.0 Optimizer

    During a review of access logs, I recently came across this user agent string. It was by far the highest in request count. As it turns out, this is a SEO tool called Sistrix. The reverse PTR for real asterisk calls should always be: More

  • Front Door Security: The RemoteAddr Trap

    Front Door Security: The RemoteAddr Trap

    If you are using Azure Front Door, the need for a WAF policy that rate limits or blocks access to certain IP addresses might arise. Using the correct parameters in the WAF policy is crucial to implement an effective block that cannot be bypassed. When selecting the property RemoteAddr in your WAF rules, a custom…

  • NoName057(16) returns after Police raid

    NoName057(16) returns after Police raid

    Between July 14-17, police and cybersecurity agencies from multiple countries worked together to go after NoName057(16), a pro-Russian cybercrime network. The operation, called “Eastwood,” was coordinated by Europol and Eurojust. Authorities from 12 countries took action at the same time, targeting both the group’s members and their computer infrastructure. The main participating countries included the…

  • Stumbled on Prompt LLM Builder

    Stumbled on Prompt LLM Builder

    I stumbled across this prompt refinement tool. I do not have much experience with it, but it looks interesting to help with building prompts.

  • Fix Invoke-Sqlcmd FileNotFound Error

    Fix Invoke-Sqlcmd FileNotFound Error

    A recent change in the SqlServer PowerShell module has given me a headache this week. I’m running the module with Azure DevOps in a pipeline that is triggering an Azure deployment script within a network-integrated container instance. The problem this error.

  • Hardcoded credentials in Sitecore XP

    Hardcoded credentials in Sitecore XP

    A blog post was today published outlining the risk (CVE-2025-34509) of Sitecore having a default user Sitecore\ServicesAPI and a password of b. The user usually has no default roles, however, it is already one step inside the system. Probably setting a secure and strong password could be sufficient. I didn’t yet see an official statement…

  • Fix: Azure CLI 2.74.0 pkg_resources Error

    Fix: Azure CLI 2.74.0 pkg_resources Error

    Recently I saw intermittent failures of a Python script. However, in my Azure DevOps pipeline, I don’t really knowingly use Python. After today, it just kept consistently failing, which led me to research this issue with the Azure CLI. I ran into this issue, and after not too long searching, I could already find an…

  • Why Azure Added Random Chars to My Slot

    Why Azure Added Random Chars to My Slot

    I started seeing a new issue on June 10th, 2025 that my Azure App Service staging slot was created with the name “staging”, but it became “stagingd5a1” in the domain name. So four seemingly random characters were added to my azure app service deployment slot name. This became a problem as my pipeline is running…

  • What i learned about Ollama and Models

    What i learned about Ollama and Models

    While I’m aware those models aren’t limited or bound to Ollama, is Ollama still the way I interface and use them? Here I try to keep notes on how I use certain models and what I like or dislike about them.