My LinkedIN Profile
Once an organization has been researched and all possible information gathered (through research and social engineering) the attacker may scan the systems and addresses collected for more information (if a vulnerability was not already discovered – i.e. using version information etc).
Followers
Share it
What is happening
Looking for Training?
The Charity I Support
Support Charities through security
My Latest Books
- Official (ISC)2® Guide to the ISSMP® CBK®
- *** THE IT REGULATORY AND STANDARDS COMPLIANCE HANDBOOK
- * Cisco Router and Switch Forensics
- * MOBILE MALWARE ATTACKS AND DEFENSE
- * Official (ISC)2 Guide to the CISSP-ISSMP
- * Checkpoint NGX R65 SECURITY ADMINISTRATION
- * The CHFI Study Guide
- ***** A General Link to my books *****
My Latest Papers
- - A comparative study of attacks against Corporate IIS and Apache Web Servers
- - ACISP: Compliance or Security, what cost? (Poster)
- - Rationally Opting for the Insecure Alternative: Negative Externalities and the Selection of Security Controls (Securing Software)
- - A Quantitative Analysis into the Economics of Correcting Software Bugs
- + InTrust: Software, Vendors and Reputation: an analysis of the dilemma in creating secure software
- + SECAU: The Economics of Developing Security Embedded Software
- + ISSRE: The not so Mythical IDS Man-Month Or Brooks and the rule of information security
- * Detecting Hydan: Statistical Methods For Classifying The Use Of Hydan Based Stegonagraphy In Executable Files
- * Electronic Contracting in an Insecure World
- * Requirements for Record Keeping and Document Destruction in a Digital World
- * The Problem With Document Destruction
- * A Taxonomy of Information Systems Audits, Assessments and Reviews
- * Analysis of a serial based digital voice recorder
- * Port Scanning a violation of property rights
- * A Quantitative Time Series Analysis of Malware and Vulnerability Trends
Archive of Former Posts
-
►
2013
(37)
- ► May 19 - May 26 (3)
- ► May 12 - May 19 (3)
- ► May 5 - May 12 (6)
- ► April 28 - May 5 (5)
- ► April 21 - April 28 (3)
- ► April 14 - April 21 (4)
- ► April 7 - April 14 (11)
- ► March 24 - March 31 (2)
-
►
2011
(195)
- ► October 23 - October 30 (11)
- ► October 16 - October 23 (17)
- ► October 9 - October 16 (10)
- ► October 2 - October 9 (10)
- ► August 14 - August 21 (15)
- ► August 7 - August 14 (13)
- ► July 31 - August 7 (10)
- ► July 3 - July 10 (1)
- ► January 30 - February 6 (12)
-
►
2010
(37)
- ► June 27 - July 4 (2)
- ► May 9 - May 16 (1)
- ► April 11 - April 18 (2)
- ► March 14 - March 21 (2)
- ► March 7 - March 14 (3)
-
►
2009
(82)
- ► July 19 - July 26 (1)
- ► July 12 - July 19 (1)
- ► July 5 - July 12 (4)
- ► June 28 - July 5 (2)
- ► June 14 - June 21 (4)
- ► June 7 - June 14 (1)
- ► May 24 - May 31 (1)
- ► May 10 - May 17 (3)
- ► April 26 - May 3 (1)
- ► April 5 - April 12 (2)
- ► March 22 - March 29 (2)
- ► March 15 - March 22 (1)
- ► March 1 - March 8 (1)
-
►
2008
(269)
- ► July 27 - August 3 (10)
- ► July 20 - July 27 (5)
- ► July 13 - July 20 (4)
- ► July 6 - July 13 (6)
- ► June 29 - July 6 (8)
- ► June 22 - June 29 (11)
- ► June 15 - June 22 (10)
- ► June 8 - June 15 (6)
- ► June 1 - June 8 (5)
- ► May 25 - June 1 (7)
- ► May 18 - May 25 (4)
- ► May 11 - May 18 (3)
- ► May 4 - May 11 (6)
- ► April 27 - May 4 (7)
- ► April 20 - April 27 (7)
- ► April 13 - April 20 (8)
- ► April 6 - April 13 (7)
- ► March 30 - April 6 (7)
- ► March 23 - March 30 (3)
- ► March 16 - March 23 (1)
- ► March 9 - March 16 (9)
- ► March 2 - March 9 (9)
- ► February 24 - March 2 (10)
Some of my Links from the past
Who I am...or what...
Visitor locations
The CV of a GSE-Compliance and GSE-Malware
©2007-11 Craig Wright
No comments:
Post a Comment