Good afternoon everybody! I hope your day is going well.
Here are today's Interesting Information Security Bits from around the web.
- New social engineering site. Looks interesting. /via @dalepearson
Head Hacker
Tags: ( social-engineering ) - Here is a chuckle for you forensics focused people
10 signs that you work in computer forensics << Happy as a Monkey
Tags: ( forensics humor ) - This is the start of a new series exploring the registry and what kind of forensics goodies are in there.
Registry Data for Forensics, Incident Response, Pentest and Pivot - Part 1 << fifth.sentinel
Tags: ( forensics registry windows ) - Here are some tips for locking down your IIS server. Probably not exhaustive, but a good start.
IIS Web Server Security
Tags: ( iis ) - I consider Jackie a good friend though we have not met in person yet. Read a little about her here.
Andrew Hay >> Blog Archive >> Information Security D-List Interview: Jackie Arlen
Tags: ( interviews d-list ) - Wikibooks in putting together a book on cryptography. Go check it out and contribute if you can.
Cryptography - Wikibooks, collection of open-content textbooks
Tags: ( cryptography books ) - Somehow, I don't think a "The server I hacked wasn't that important" defense is going to work very well.
Feds: TSA Worker Tried to Sabotage Terror Database | Threat Level | Wired.com
Tags: ( news ) - This is a nice analogy and treatment of how security failures can happen. I don't agree with the last paragraph though.
Verizon Business Security Blog >> Blog Archive >> Plane crashes and security breaches
Tags: ( risk ) - Here is a nice little lightweight application that is intentionally vulnerable to several common attacks.
Vicnum - Lightweight Vulnerable Web Application | Darknet - The Darkside
Tags: ( tools training webappsec vulnerable-app )
That's it for today. Have fun!
Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.
Kevin