Associations
State of the Internet
Security Bloggers Network- Spammers attempt Grand Theft from Auto Recall View From The Bunker
- Secure Network launches the first security assessment toolkit for virtual infrastructures Security Circus
- Exclusive PCI Security Standards Council Interview spinman
- Multiple DOM-Based XSS in Dojo Toolkit SDK Bix
- TJX Hacking Conspirator Gets 4 Years spinman
- New Federal IT Security Certification Program spinman
- ICCS 2010 Kees
- SecurityFocus To Shutter Dave Lewis
- ENISA关于云安全风险的一幅示意图 Richard
- 美国全民搞安全又有新举措 – DHS推出方案建议挑战赛 Richard
Archive for July, 2007
VMGameOver?
Saturday, July 28th, 2007 Posted in Exploits, InGuardians, Virtual Machines, Vulnerability | 3,079 views 3 Comments »
UPDATE: Don't miss the detailed comment by Ed Skoudis. I hope that you have been designing your implementation of virtual environments properly. It has been no secret that the ... Read more..Security ROI is in the Eyes of the Beholder
Monday, July 23rd, 2007 Posted in Management, ROSI | 1,287 views 8 Comments »
UPDATE: Bumped because of comments A post from Richard Bejtlich caught my eye the other day. In his post "Network Security Monitoring Case Study" Richard says: It's important to remember that ... Read more..ChicagoCon 2007
Monday, July 23rd, 2007 Posted in Conferences, EHN | 776 views 1 Comment »
The guys at The Ethical Hacker Network have been working really hard lately. Their latest endeavor is a security conference in Chicago devoted specifically towards Ethical Hacking. It ... Read more..Follow up to Infosecsellout Post
Thursday, July 19th, 2007 Posted in Blogging, Professionalism | 851 views No Comments »
I have been reading a lot of articles saying that I have pointed the finger at LMH and PHC. I even received a comment to that effect. # jf Comment @ 07/19/07 ... Read more..Outting the InfoSecSellout?
Wednesday, July 18th, 2007 Posted in Blogging, Professionalism | 3,516 views 6 Comments »
Today I was minding my own business in a chatroom that I monitor when somebody posted something about infosecsellout. Normally I ignore anything pertaining to infosecsellout due to an ... Read more..Explaining Sensitive Information
Wednesday, July 11th, 2007 Posted in Sensitive Information | 1,448 views 1 Comment »
Classification of data starts with defining that data. Unfortunately there are many definitions for personal or private information and these definitions are often different depending on country, state, organization, ... Read more..Incident Response Toolkit Justifications
Saturday, July 7th, 2007 Posted in Incident Response, Tools | 1,008 views No Comments »
One of the cool things about taking the SANS GCIH through their OnDemand classes is that you get 10 weeks to interact with the other students instead of the usual ... Read more..Mitigating ICMP
Saturday, July 7th, 2007 Posted in Helpful | 691 views 2 Comments »
For the past week I have been re-involving myself in the Security Catalyst Community. While wading through some of the posts I had yet to read I came across ... Read more..Why Does Microsoft Ignore Centralized Logging
Thursday, July 5th, 2007 Posted in Helpful | 623 views 1 Comment »
Okay, Windows NT has been out since 1993. Windows NT4 has been out since 1996. And to this date the developers at Microsoft have not provided administrators a ... Read more..Grad Students, Building Insecurity?
Tuesday, July 3rd, 2007 Posted in Helpful | 972 views No Comments »
One of the problems facing many universities is the use of their graduate students as developers and administrators within their departments. Although many students are very capable individuals they ... Read more..