Resources Dan Kaminsky Reveals His Process For Security Research - resources.infosecinstitute.com Dan Kaminsky has been a noted security researcher for over a decade, and has spent his career advising Fortune 500 companies such as Cisco, Avaya and Microsoft. Dan spent three years working with Microsoft on their Vista, Server 2008 and Windows 7 releases. Incident [...]
Here are the information security events in North America this month: SANS Security West 2011: May 3 to May 13 in San Diego Bsides ROC: May 7 to May 8 in New York Secure 360: May 10 to May 12 in Saint Paul TakeDownCon: May 14 to May 20 in Dallas SANS Cyber Guardian: May [...]
Events Related Debriefing on BSidesLondon It was a long but wonderful day! I woke up very early to catch my train from Brussels to London and arrived just in time. The room was already full of security guys, some well known faces and new ones. BSidesLondon Wrap up - blog.rootshell.be BSidesLondon D-Day - blog.rootshell.be BSidesLondon: [...]
Events Related: OWASP threat modeling project - myappsecurity.blogspot.com We are starting an OWASP threat modeling project to standardize a threat modeling approach which can be used by various companies. Resources: Neil Daswani Reveals His Process for Security Research - resources.infosecinstitute.com In our ongoing series of interviews, this week Neil Daswani answered a few questions and [...]
Resources CanSecWest Vancouver 2011 Presentation Files - cansecwest.com Comprehensive list of presentations during the recently concluded CanSecWest 2011 The Symantec Internet Secuirty Threat Report Volume 16 Is Here! - symantec.com We are pleased to announce that Volume 16 of the Symantec Internet Security Threat Report (ISTR) is now available. Jeremiah Grossman Reveals His Process For [...]
Each week, we’ll highlight a major city in the US and cover the places and events you can go to in that area to get your security information fix. This post is part of the information security communities. Since Little Rock is a big city in the small state of Arkansas, there must be local [...]
Resources Weaponizing doz.me: Improved HTML5 DDOS – spareclockcycles.org Beyond making the backend code a little bit less of a disaster than it was originally, I have also made the attack itself significantly more effective. Location of Forensice Evidence in the Registry - travisaltman.com I got tired of always searching online for the location of something [...]
Here are the information security events in North America this month: CISOA/SecureIT Joint 2011 Conference: April 4 to April 6 in Santa Clara NotACon 8: April 14 to April 18 in Cleveland Infiltrate: April 16 - 17 in Miami THOTCON: April 15 to April 16 in Chicago SANS Northern Virginia: April 15 to April 24 [...]
Each week, we’ll highlight a major city in the US and cover the places and events you can go to in that area to get your security information fix. This post is part of the information security communities. Bismarck is a small city with a big heart. Nothing much happens on the infosec front. Considering [...]
Events Related Outerzone 2011 Hacker Con - irongeek.com The following are videos of the presentations from the Outerzone 2011 hacker conference. Resources web.config Security Analyzer This little beauty let’s you feed in a Web.config then it comes back and tells you everything you’ve done wrong in the world of security configuration. web.config Security Analyzer - [...]