About this blog

This is not your normal information security blog. This blog is where I vent and struggle against the standards of infosec orthodoxy (wow - I can't even believe there is such a thing). If you're looking for a place to just get the standard security professional line on everything then this is not the place for you. This is a place to read the opinions (and I have many) of someone who often disagrees with standard conventions and isn't afraid to say so.

• Recent Posts

  • understanding your auditor
  • Read what your CEO reads
  • Risk and unused services
  • stop patching
  • web app reviews: where to start
  • constellation energy called out in book
  • predictions for 2011
  • bypassing domainsbyproxy.com
  • even length passwords
  • slides from Domino presentation are up
  • Seen at OWASP appsec dc
  • View names in Domino help files
  • IPV6 + MAC addresses + Geolocation = Privacy fail
  • Football signals and security models
  • OWASP USA conference videos

• Archives

  • August 2011 (1)
  • July 2011 (1)
  • March 2011 (2)
  • January 2011 (2)
  • December 2010 (3)
  • November 2010 (3)
  • October 2010 (6)
  • September 2010 (3)
  • August 2010 (3)
  • July 2010 (5)
  • May 2010 (4)
  • April 2010 (5)
  • March 2010 (3)
  • January 2010 (1)
  • December 2009 (5)
  • November 2009 (1)
  • October 2009 (2)
  • September 2009 (1)
  • August 2009 (1)
  • July 2009 (2)
  • June 2009 (5)
  • May 2009 (2)
  • April 2009 (1)
  • March 2009 (4)
  • February 2009 (9)
  • January 2009 (2)
  • September 2008 (2)
  • August 2008 (10)
  • July 2008 (6)
  • June 2008 (7)
  • May 2008 (6)
  • April 2008 (7)
  • March 2008 (2)

•  

  May 2012

  M	T	W	T	F	S	S
  « Aug
  	1	2	3	4	5	6
  7	8	9	10	11	12	13
  14	15	16	17	18	19	20
  21	22	23	24	25	26	27
  28	29	30	31

• News

• SANS newsbites

  • SANSFIRE 2011
  • Budget Official To Replace Howard Schmidt as White House Cyber Czar (May 17, 2012)
  • Terrorists and Nation States May Attempt To Exploit Anonymous (May 17, 2012)

• securityfocus news

  • News: Change in Focus
  • News: Twitter attacker had proper credentials
  • News: PhotoDNA scans images for child abuse

• Analysis

• Bruce Schneier

  • Portrait of a Counterfeiter
  • Friday Squid Blogging: Squid Scalp Massager
  • Kip Hawley Reviews Liars and Outliers

• Projects and research

• ha.ckers.org

  • And Beyond…
  • FAQ
  • What’s Left?

• Google security blog

  • Spurring more vulnerability research through increased rewards
  • An improved Google Authenticator app to celebrate millions of 2-step verification users
  • Celebrating one year of web vulnerability research

• Vulnerabilities

• Securityfocus

  • Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability
  • Vuln: Google Chrome Prior to 19 Multiple Security Vulnerabilities
  • Vuln: PHP Address Book Multiple SQL Injection and Multiple Cross Site Scripting Vulnerabilities

• Tools

• Packetstorm tools

  • Nmap Port Scanner 6.00
  • Zone-H Multithreaded Poster
  • Cura 1.0

• My Certifications

  
  
  
  
  
  

Angels of security is proudly powered by WordPress
Entries (RSS) and Comments (RSS).