Author Archives: Admin

Public Key Infrastructure

Posted on 15 November 2011 by Admin

Public Key Infrastructure (PKI) is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates (from wikipedia). Usage Example Encryption Authentication Signatures There are several tutorial videos available. Cryptography tutorial … Continue reading

Posted in Security Training, Awareness and Reports | Comments Off on Public Key Infrastructure

Example Analysis of Spear-phishing email

Posted on 3 November 2011 by Admin

There is a good example of a detailed investigation of a malware, available on SANS reading room. It is good for learning, not only about spear phishing threats, but also about investigation techniques. Case highlights: Spear-phishing email with attachement The … Continue reading

Posted in Forensics, Security Threats, Security Training, Awareness and Reports | Comments Off on Example Analysis of Spear-phishing email

Notepad++, Tool for editing various text files

Posted on 1 November 2011 by Admin

Notepad++ is good free alternative for editing text files.   It support syntax highlighting, for example for java etc. Note, several files are accessable via tabs. Note, there might be some installation issues with Windows Vista. As an alternative way, … Continue reading

Posted in Recommended Free Tools | Comments Off on Notepad++, Tool for editing various text files

Audio book “Jane Eyre”

Posted on 31 October 2011 by Admin

LibriVox is one of those sites which holds free audio books. Audio books might fit nicely especially for travellers. I was happily surprised of the quality of the audio book “Jane Eyre” by Charlotte Brontë, and read by Elizabeth Klett. … Continue reading

Posted in Books | Comments Off on Audio book “Jane Eyre”

Duqu, beginning of future Stuxnet variants

Posted on 31 October 2011 by Admin

Symantec has published a study of a new threat called Duqu. Main components and modules are shwon below. Highlights from Symantec report: The threat was written by the same authors Duqu’s purpose is to gather intelligence data and assets from … Continue reading

Posted in Security Threats | Comments Off on Duqu, beginning of future Stuxnet variants

Security Certification directory

Posted on 28 October 2011 by Admin

CSO Online article “The Security Certification Directory” contains a good list in this subject. The directory is divided into categories: Information Security certifications, like Certificate of Cloud Security Knowledge Certified Information Systems Professional, CISSP Global Information Assurance Certification (GIAC) Certified … Continue reading

Posted in Security Certifications, Security Management | Comments Off on Security Certification directory

Security Survey Directory

Posted on 28 October 2011 by Admin

CSO Online article “The security data and survey directory” contains a good list in this subject. The directory is divided into categories: Risk Management Attack Vectors Security Spending, Budgets & Priorities Physical Security and Loss Prevention Security Controls Data Security … Continue reading

Posted in Security Management | Comments Off on Security Survey Directory