New resources | Add a resource | Top rated resources
|
Biometrics (11)
Books (64)
Digital identity (8)
Encryption (14)
Firewalls (31)
Intrusion detection (44)
Phishing (12)
Wireless security@ (43)
|
Web security@ (38)
Linux security@ (6)
Windows security@ (15)
Spam@ (20)
Viruses and worms (16)
VPNs (36)
|
A Day In The Life Of An Information Security Officer 
Weblog. |
Hits: 567 |
|
A Sordid Tale
"One anonymous CSO's account of the dark side of security that goes beyond hackers and thieves." CSO Magazine, 02/03. |
Hits: 457 |
|
A Survival Guide for Security Professionals
This survival guide aims to assist security professionals to balance the responsibilities and requirements of their role to avoid stress and burnout." SANS Institute, 03/20/02. |
Hits: 586 |
|
Abner Stories
Weblog: IDC Research Manager Abner Germanow discusses security and wireless issues. |
Hits: 445 |
|
Aligning Security with the Business: The Balanced Scorecard
"Giga Information Group says that by adopting the balanced scorecard approach, security organizations can significantly improve relations with the business units and close the gap between how security views itself and how business managers view it." |
Hits: 509 |
|
alt.2600 / #hack FAQ
Answers to Frequently Asked Questions about hacking. |
Hits: 352 |
|
Anatomy of a security audit
Professional auditor Shawn Bernard of Networks Unlimited exposes risks overlooked by IT staff of a New England medical center. Network World, 10/20/03. |
Hits: 390 |
|
ATAC: Abusable Technologies Awareness Center
"Our mission is to provide current and accurate information about technology that oversteps its bounds. Whether the concerns relate to unexpected privacy violations or inappropriate security, ATAC serves as a clearinghouse for informed discussions." |
Hits: 285 |
|
Attacking the DNS Protocol
"This paper whilst containing nothing new on DNS security brings together in one document many strands of DNS security which has been published and reported in many separate publications before. As such this document intends to act as a single point of reference for DNS security. This paper contains some basic and advanced level attacks." |
Hits: 420 |
|
Attacks against weaknesses in the TCP/IP protocol
About smurfs and other vermin: Lately we have seen a new phenomenon in the digital underground. I.e. the phenomenon in itself is not new, but as it has become very easy to get ones hands on the tools needed to do the bad deed, we have experienced more instances. This phenomenon is known by different names. e.g. Smurf, Land, Bonk etc. The intent is the same however - to halt computers thus disabling their intended use. |
Hits: 164 |
|
Audit Your Organization's Password Strength with L0phtCrack
"Use L0phtCrack auditing to improve the quality of passwords in your organization." Security Administrator, 2/21/03. |
Hits: 456 |
|
Barbarians at the Gate: An Introduction to Distributed Denial of Service Attacks
"This article will explain the concept of DDoS attacks, how they work, how to react if you become a target, and how the security community can work together to prevent them." SecurityFocus. |
Hits: 464 |
|
Be the hacker
Ethical hacking of your own Web site can reveal problems and vulnerabilities before the bad guys find them. Network World, 04/14/03. |
Hits: 429 |
|
Breaking security news
The latest security news, how-to's, columns, newsletters and forums from Network World |
Hits: 424 |
|
Buffer overflows demystified
Describes how they work. |
Hits: 442 |
|
Building an Information Technology Security Awareness and Training Program
NIST draft document: "The publication provides detailed guidance on designing, developing, implementing, and maintaining an awareness and training program within an agency's IT security program." |
Hits: 474 |
|
CERT Coordination Center
Vulnerability and incident alerts and guides to good security practices. |
Hits: 405 |
|
CERT Security Improvement Modules
A series of documents from CERT on specific security issues, from securing workstations to responding to intrusions. |
Hits: 409 |
|
Cisco Router Security Recommendation Guides
Guide to protecting Cisco routers by the National Security Agency. |
Hits: 801 |
|
Closing the Floodgates: DDoS Mitigation Techniques
"To be on the receiving end of a distributed denial of service (DDoS) attack is a nightmare scenario for any network administrator, security specialist or access provider. It begins instantly, without warning, and continues relentlessly: machines down, jammed bandwidth, overloaded routers. An effective, immediate response is often difficult and may depend on third parties, such as ISPs. With these challenges in mind, this article will explore some techniques that systems administrators and security professionals can employ should they ever find themselves in this rather undesirable situation." SecurityFocus, 01/07/03. |
Hits: 441 |
|
Common Vulnerabilities and Exposures
"A list of standardized names for vulnerabilities and other information security exposures - CVE aims to standardize the names for all publicly known vulnerabilities and security exposures." |
Hits: 529 |
|
Computer Security Resource Center - NIST
Security alerts and bulletins, virus updates, training and policy, bibliographies, FAQs, and lists and links to security associations and organizations. |
Hits: 424 |
|
Countering buffer overflows
"This article discusses the top vulnerability in Linux/UNIX systems: buffer overflows. This article first explains what buffer overflows are and why they're both so common and so dangerous. It then discusses the new Linux and UNIX methods for broadly countering them -- and why these methods are not enough. It then shows various ways to counter buffer overflows in C/C programs, both statically-sized approaches (such as the standard C library and OpenBSD/strlcpy solution) and dynamically-sized solutions, as well as some tools to help you. Finally, the article closes with some predictions on the future of buffer overflow vulnerabilities." |
Hits: 275 |
|
Cybercrime archives
Searchable archive of a mailing list devoted to court cases involving cybercrimes. Maintained by Orin Kerr, a professor at George Washington University. |
Hits: 381 |
|
Daily Incite
Comments and analysis from Mike Rothman of Security Incite. |
Hits: 31 |
|
Dave Piscitello's Weblog
Notes on network security issues by Dave Piscitello, president of Core Competence. |
Hits: 141 |
|
Dealing with deviants on your network
It's a security manager's nightmare. Network logs of Internet activity at MassMutual Financial Group indicated a top executive was spending much of his time in chat rooms, where he claimed to have molested his 12-year-old daughter. Network World, 03/31/03. |
Hits: 376 |
|
Derrick's Security Weblog
"I wear a number of hats and carry a number of titles, but perhaps the most relevant one is Manager of the Security Engineering and Coordination Team. This team is essentially the interface between Sun and the outside world for all things related to security issues/problems with our products." |
Hits: 84 |
|
Developing a Security Policy
Advice from Sun: "This article discusses the importance of security policies for organizations that plan to use electronic commerce on the Internet; for government organizations that want to automate forms processing; and for any entity that may have external exposure of data processing environments. These organizations need some form of security architecture. This article also describes the basic steps through which security policies are developed and includes a set of recommended policy components. |
Hits: 591 |
|
disLEXia: cybercrime/-security sightings
"A research project for collecting raw information about cybercrime incidents." |
Hits: 120 |
|
Diversity: A Best Practice for Security
A Webtorials.com paper: "From a security perspective, the trend to go with the most popular operating systems and applications has a distinctly negative side. Namely, if hackers are going to attack a vulnerability, they will go for the vulnerability that has the most potential impact. For a browser-based vulnerability, the hacker can have orders of magnitude more impact by exploiting a vulnerability in Microsoft Internet Explorer than by attacking users of Opera. |
Hits: 407 |
|
Eight myths of computer security
By Ross Oliver: "Mark Twain said it best: 'It ain't what you don't know, it's what you know that ain't so.' Just as any other industry, Information Security has its myths and misconceptions. They can be harmful if they cause us to squander our limited resources in the wrong areas, or rely on faulty ideas and techniques. Here are 8 of the most prevalent..." |
Hits: 469 |
|
Elements of security policy style
Four-part series by M.E. Kabay on writing security policies: "How should one write security policies? Should they be suggestions? Orders? Positive? Negative? I think that policies should be definite, unambiguous and directive. In addition, all policies should have (preferably optional) explanations for the reasons behind them." |
Hits: 341 |
|
EPAL
"The Enterprise Privacy Authorization Language (EPAL) is a formal language to specify fine-grained enterprise privacy policies. It concentrates on the core privacy authorization while abstracting from all deployment details such as data model or user-authentication." Developed by IBM, now under review by the World Wide Web Consortium. |
Hits: 335 |
|
Etherleak: Ethernet frame padding information leakage
"Multiple platform Ethernet Network Interface Card (NIC) device drivers incorrectly handle frame padding, allowing an attacker to view slices of previously transmitted packets or portions of kernel memory. This vulnerability is the result of incorrect implementations of RFC requirements and poor programming practices, the combination of which results in several variations of this information leakage vulnerability. This bug is explored in its various manifestations through code examples and packet captures. Solutions to this flaw are provided." |
Hits: 408 |
|
Ethical hacking
"This paper describes ethical hackers: their skills, their attitudes, and how they go about helping their customers find and plug up security holes. The ethical hacking process is explained, along with many of the problems that the Global Security Analysis Lab has seen during its early years of ethical hacking for IBM clients." |
Hits: 490 |
|
Evolution of a Cryptographer
"Bruce Schneier, who literally wrote the book on cryptography, talks with Senior Editor Scott Berinato about his holistic view of security, both physical and technical." CSO, 09/03. |
Hits: 258 |
|
Hack FAQ
"This FAQ is intended to explain and show the theory and practice behind hacking. While it serves both administrator and hacker alike, the perspective is from the intruder." |
Hits: 448 |
|
Hacking techniques: Introduction to password cracking
"Password and user account exploitation is one of largest issues in network security. In this article Rob Shimonski will look at password cracking: the how and why of it. Rob will explain just how easy it is to penetrate a network, how attackers get in, the tools they use, and ways to combat it." From IBM. |
Hits: 654 |
|
Hardening Solaris
Links to resources for battening down Solaris servers. |
Hits: 440 |
|
ICAT Metabase
"ICAT is a searchable index of information on computer vulnerabilities. It provides search capability at a fine granularity and links users to vulnerability and patch information." |
Hits: 391 |
|
ICMP Usage In Scanning
"The risks involved in implementing the ICMP protocol in a network, regarding scanning, are the subject of this research paper." From Sys-Security.com. In PDF. |
Hits: 402 |
|
Identifying P2P users using traffic analysis
"In this paper the author will propose a new method based on traffic behavior that helps identify P2P users, and even helps to distinguish what type of P2P applications are being used." From SecurityFocus. |
Hits: 109 |
|
Info Security Writers
Papers on information security: "A major objective of the Info Security Writers is seeking the security enthusiasts who write. Most of the site's content is generated by these people willing to share their knowledge and experiences on the various aspects of security/hacking via original white papers, articles and projects." |
Hits: 198 |
|
Information Assurance Technical Framework Forum
A group, sponsored by the National Security Agency to "foster dialog amongst U.S. Government agencies, U.S. Industry, and U.S. Academia" on ways to protect their data. Holds regular meetings in the Washington area; the Web site has copies of documents on the framework specification. |
Hits: 337 |
|
Information Systems Audit and Control Association
This organization with 26,000 members in over 100 countries administers the Certified Information Systems Auditor exam, leading to the CISA credential for the IT security auditor |
Hits: 426 |
|
Institute for Security and Open Methodologies
"An open, non-profit think-tank for developing new, open standards and methodologies largely in security. All standards are open for international peer-review and are regularly updated to meet the demands of new technologies and the processes derived from them." |
Hits: 395 |
|
International Information Systems Security Certification Consortium
Provides training for and administers the exams for professional security crednetials that include the "Certified Information Systems Security Professional" and the "System Security Certified Practitioner." |
Hits: 421 |
|
Internet Security: Be Careful Out There
"Ramblings of a security nerd." |
Hits: 62 |
|
Internet Storm Center
Tracks the numbers and types of port scans around the world, using logs supplied by volunteers. SANS Institute. |
Hits: 403 |
|
IP Spoofing: An Introduction
SecurityFocus article: "IP spoofing is one of the most common forms of on-line camouflage. In IP spoofing, an attacker gains unauthorized access to a computer or a network by making it appear that a malicious message has come from a trusted machine by 'spoofing' the IP address of that machine. In this article, we will examine the concepts of IP spoofing: why it is possible, how it works, what it is used for and how to defend against it." |
Hits: 526 |
|
IP Spoofing: Understanding the basics
"IP spoofing is the most exciting topic you will hear wannabe hackers talking about. It is also a subject about which no one knows much. Before we continue I would like to tell you that IP Spoofing is quite difficult to understand and a lot of people have trouble understanding how it is done. ..." Linux Exposed. |
Hits: 196 |
|
ISO 17799 Central
Information and resources dedicated to the ISO 17799 IT security standard. Also includes the certification register. |
Hits: 205 |
|
ISO 17799 Forum
The international user community forum dedicated to the ISO 17799 security standard. |
Hits: 248 |
|
IT Security Cookbook
"This book is intended as a 'self help' guide to computer & network security, primarily for security managers, programmers and system administrators." |
Hits: 457 |
|
It's Not Easy Being Breached
"Surviving a security incident is just the beginning. Then you need to figure out what it really cost." CSO Magazine, 01/03. |
Hits: 388 |
|
joatBlog
Weblog: "(J)ack (O)f (A)ll (T)rades, Mostly Security, Some Blogging, Misc. Admin, and Bits of My Life." Points to new and useful security papers and tutorials. |
Hits: 327 |
|
Layer 2: the Weakest Link
"Two of the most problematic attack signatures that threaten Layer 2 -- MAC flooding attacks and virtual LAN (VLAN) hopping -- are explored in this article, along with some ways to mitigate their effects." Cisco Packet, Q1/03. |
Hits: 507 |
|
Managing Network Security
Monthly series of articles by Fred Cohen. Originally published in Network Security magazine. |
Hits: 453 |
|
Martin McKeay's Network Security Blog
"I write in the hope that some day, something I say will help someone else protect their network. May you learn by my mistakes." |
Hits: 300 |
|
National Strategy to Secure Cyberspace
Government report: "The purpose of this document is to engage and empower Americans to secure the portions of cyberspace that they own, operate, control, or with which they interact. Securing cyberspace is a difficult strategic challenge that requires coordinated and focused effort from our entire society.the federal government, state and local governments, the private sector, and the American people." |
Hits: 405 |
|
Network Security Journal
"News and commentary on network security topics." |
Hits: 91 |
|
Network World on Security
Archive of our e-mail newsletter, featuring twice-weekly tips on protecting your network. |
Hits: 401 |
|
Network-critical Physical Infrastructure Vulnerability Assessment
Questionaire from APC that can help you assess the physical security of your data center. In PDF. |
Hits: 374 |
|
Networking Security Concepts
"The key to network security can be found in understanding the choices and strategies available to you look to the building blocks of network security. These include implementing user authentication, using proxy servers and firewalls, setting up demilitarized zones, and taking advantage of port- and packet-filtering technologies. The overview of these security solutions provided by this article will give you an understanding of the technology." Linux Exposed, 08/04. |
Hits: 164 |
|
No Stone Unturned
Series of articles on dealing with suspicious files found on Windows NT and Windows 2000 boxes. |
Hits: 403 |
|
NTP: It's About Time
"On your network, time synchronization is essential for correlating event data, auditing, and accounting. This article explains why accurate, universal time across your entire network benefits you, and tells how to standardize on accurate time." |
Hits: 116 |
|
Onion Routing
Site that links to articles and resources on onion routing - an attempt to develop a way to hide the true origin of packets on a TCP/IP network. |
Hits: 155 |
|
Open Source Security Testing Methodology Manual
"This manual is to set forth a standard for Internet security testing. ... Any network or security expert who meets the outline requirements in this manual is said to have completed a successful security snapshot." From Isecom. |
|
|
OpenSec: The Open Security Project
"The Open Security Project is a grassroots coalition with the aim of creating standards to simplify the process of system management. OpenSec is a community-wide effort and all are welcome to participate. |
Hits: 287 |
|
PacketDefense
Active InfoSec forums, live news feeds, tools, advisories. Forum topics include crypto, VPNs, firewalls, voip security, wireless security. |
Hits: 403 |
|
Passive Aggressive
SecurityFocus article" "Black hats use 'passive fingerprinting' to identify your operating system without you knowing it. But the technique is useful for white hats too." 01/30/02. |
Hits: 370 |
|
PatchManagement.org
"PatchManagement.org is the industry's first mailing list dedicated to the discussion of patch management. Whether it's a Linux operating system patch or a Microsoft application hotfix, this is the place to find more information about it." |
Hits: 367 |
|
PBX Vulnerability Analysis
"This report presents a generic methodology for conducting an analysis of a Private Branch Exchange (PBX) in order to identify security vulnerabilities. The report focuses on digital-based PBXs and addresses the following areas for study: System Architecture; Hardware; Maintenance; Administrative Database/Software; User Features. This report is not intended to provide a step-by-step process, but rather a guideline for what specific areas should be studied for the existence of possible vulnerabilities." From NIST. |
Hits: 97 |
|
Privacy.org
Daily privacy news on this joint project of the Electronic Privacy Information Center (EPIC) and Privacy International. |
Hits: 389 |
|
Protecting Your Corporate Network from Your Employees' Home Systems
"The challenge (to protect corporate information and systems) becomes much greater when employee home systems are allowed to access the corporate network via a VPN. These systems spend most of their time connected to the wild wild Internet and the rest of their time directly connected to your corporate network. In addition to work related activities they may be used for many other purposes by any number of people." |
Hits: 316 |
|
Reducing the time for port scans
"Penetration testers face a problem of very slow port scans when testing firewalled networks. A Class C block for instance, requires several days for all the 64K TCP ports to be scanned. Limiting the port scan to the ~1000 well known ports can reduce the time required significantly, but it would also miss out on any nonstandard port that is open in the network. |
Hits: 126 |
|
Review: VCON's IPNexus
Companies concerned about security threats with public instant-messaging services are looking at enterprise instant-messaging products as a way to allow for real-time text communications without sacrificing security and manageability. A product on the short list for companies should be VCON's IPNexus system. Network World, 01/13/02. |
Hits: 383 |
|
Risk analysis needs a reality check
"One factor that contributes to poor risk analysis is having too much awareness of a problem. Get hypersensitized to an issue, such as security threats, and you're bound to react in a way disproportionate and uncalled for by the facts. We're not just inundated with security information; we're overwhelmed by it. This sets us up to make poor decisions." |
Hits: 360 |
|
Risk analysis spreadsheets
Series of documents and sample Excel spreadsheets for completing a risk analysis. From the University of Vermont. |
Hits: 483 |
|
SANS Institute
A cooperative research and education organization presents system and security alerts, news briefs, special research projects and publications. |
Hits: 401 |
|
Scanning for Rootkits
O'Reilly Network article that discusses how to detect these common hacker tools on your network: "If a server is compromised, it is equally important to realize this before it's too late and take measures to survive the attack." 02/07/02. |
Hits: 391 |
|
Secure access to your server checklist
"With the recent increase of break-in attempts via ssh, here's a little checklist of making sure your server is as secure as you can make it while still being able to access it from the outside." |
Hits: 128 |
|
Securing Your Network: Removing Unwanted Devices
"Not much attention is given to one of the most elusive aspects of security, that of physical connectivity. The main goal of network security is of course to keep legitimate network users up and running, while keeping the bad ones out completely. Under normal circumstances, where the supposed attacker may be hundreds of miles away, on the other side of your firewall, this is relatively easy enough. However, when unauthorized users have a direct physical connection on your network, the problem can be infinitely harder to solve. Should an intruder ever reach the 'soft side' of your network - the private area behind the DMZ - it is vital to know how to detect them, how to find them, and how to pull the plug (often literally)." From Whitedust. |
Hits: 72 |
|
Security Awareness for Ma, Pa and the Corporate Clueless
"The Security Awareness Blog gives computer security tips and tricks to government, corporations and home users everywhere. We focus on the people - not the technology. Our brand of Security Awareness training and materials is sponsored by Winn Schwartau's Security Awareness Company (Interpact, Inc.)" |
|
|
Security Considerations for Voice over IP Systems
NIST draft: "Lower cost and greater flexibility are among the promises of VOIP for the enterprise, but the technology presents security administrators with significant security challenges. Administrators may mistakenly assume that since digitized voice travels in packets, they can simply plug VOIP components into their already-secured networks and remain secure. Unfortunately, the process is not that simple. This publication explains the challenges of VOIP security for agency and commercial users of VOIP, and outlines steps needed to help secure an organization's VOIP network." In PDF |
Hits: 374 |
|
Security for Telecommuting and Broadband Communications
"This document assists organizations in addressing security issues by providing recommendations on securing a variety of applications, protocols, and networking architectures. Recommendations in this publication are designed for Federal agencies, but may be useful to commercial organizations and home users as well." Recommendations from the National Institute of Standards and Technology. 3.8M-bit PDF file. |
Hits: 524 |
|
Security Guide for Interconnecting Information Technology Systems
"The Security Guide for Interconnecting Information Technology Systems provides guidance for planning, establishing, maintaining, and terminating interconnections between information technology (IT) systems that are owned and operated by different organizations." From NIST. In PDF. |
Hits: 394 |
|
Security Issues of Instant Messaging
SecurityFocus overview. 01/13/03. |
Hits: 451 |
|
Security Risk Factors with IP Telephony based Networks
"IP Telephony based networks, which might be a core part of our Telephony infrastructure in the near future, introduce caveats and security concerns which traditional telephony based networks do not have to deal with, have long forgotten about, or have learned to cope with. The security risk is usually overshadowed by the technological hype and the way IP Telephony equipment manufacturers push the technology to the masses. This paper highlights the different security risk factors with IP Telephony based networks." From Sys-Security.com |
Hits: 532 |
|
Security RSS newsfeeds
Links to RSS versions of 15 security-related mailing lists, from bugtraq to honeypots. |
Hits: 372 |
|
Security Tech Tips
Topics covering many Internet security issues.Computer Emergency Response Team Coordination Center (CERT/CC) at Carnegie Mellon Institute. |
Hits: 396 |
|
SSH tunnelling
"SSH tunnelling is an excellent way to tunnel insecure protocols through a secure communication channel. In this example, I'll tunnel POP3 traffic using ssh. Traditional POP3 traffic, including username and password information, travels clear-text across the network." |
Hits: 135 |
|
Standards for Security Categorization of Federal Information and Information Systems
"Standards to be used by all Federal agencies to categorize all information and information systems collected or maintained by or on behalf of each agency based on the objectives of providing appropriate levels of information security according to a range of risk levels." From NIST. |
Hits: 322 |
|
Steps for Recovering from a UNIX or NT System Compromise
Tips from CERT/CC. |
Hits: 378 |
|
Sys-Security.com
Web site dedicated to computer security research. It is the home of the "ICMP Usage In Scanning" research project. |
Hits: 381 |
|
TaoSecurity
Weblog: "Dedicated to network security monitoring, incident response, digital forensics, and book reviews on related subjects." |
Hits: 344 |
|
The Eight Rules of Security
"Technology will fail. Accept it. With proper policies and procedures in place though, you significantly reduce the impact that it may have on your organization." |
Hits: 285 |
|
The Need for Security Testing
"Will help C-level executives understand what Security Testing is and how the Open Source Security Testing Methodology Manual (OSSTMM) can help raise the level of security within their organization." By Charles W. Fullerton, 06/09/04. In PDF. |
Hits: 194 |
|
Things that Go Bump in the Net
"This is a brief look at some of the more colorful characters in the menagerie of network security threats, with an emphasis on how they relate to agent-based systems. The Massively Distributed Systems group in IBM Research conducts research into these and other emergent concerns in future distributed systems." |
Hits: 373 |
|
Threats and your assets - What is really at risk?
"In this article we will cover some of the most important items you will need to consider when discussing, analyzing, designing or implementing a security posture within your place of business, or perhaps in a company you may be servicing." WindowSecurity, 08/10/04. |
Hits: 111 |
|
Three Imperatives For Secure Data Networks
"Robert Frances Group says IT executives should utilize a top-down methodology to identify, design, and implement security measures for business applications, and also verify that security layers work together seamlessly in compliance with corporate security directives." |
Hits: 378 |
