OWASP AppSec California Recap
I spent the week at OWASP AppSec California in Santa Monica and had a great time! This is the 2nd year of having the event at […]
Security Conference Presentation Summaries
C’mon back to Cali! OWASP AppSec California This Week!
I’m looking forward to seeing everyone next week at OWASP AppSec California in Santa Monica and hearing some of the great talks planned, but I’m […]
AppSec Cali: Hackazon – Stop Hacking Like It’s 1999!
I’m looking forward to reconnecting with everyone next week at AppSec California. I hope you’ll join me for my talk, Hackazon – Stop Hacking Like […]
Mass Scanning the Internet – DefCon 2014 (Talk Summary)
This talk, Mass Scanning the Internet at DefCon 22, piqued my interest as we at NTO are very fundamentally concerned with gathering massive amounts of security assessment data from a web application and so a perennial nemesis for us is memory management. So reading the brief, I thought, wow, these guys (Rob Graham, Paul McMillan, Dan Tentler) are scanning the whole internet. I might get some memory management ideas.
Low-Tech Ways of Detecting High-Tech Surveillance by Dr. Philip Polstra (2014 DEF CON Summary)
I must confess to whomever it is relevant to do so (only God probably and He is likely bored with confessions by now) that I […]
Red Phish, Blue Phish: Improved Phishing Detection Using Perceptual Hashing (OWASP AppSec USA 2014 Preso Review)
At the recent OWASP AppSecUSA in Denver, Daniel Peck of Barracuda Networks put together this presentation for those interested in phishing detection, or for anyone […]
Mobile Security Attacks – A Glimpse from the Trenches (OWASP AppSec USA 2014 Preso Review)
At the recent OWASP AppSecUSA in Denver, Yair Amit and Adi Sharabani of Skycure presented a very informative overview of mobile security issues. There was […]
2014 HOFFL Mid-season Update
We are about mid-season into this years Hackers Only Fantasy Football League (HOFFL) and its time to give everyone an update. Unlike last year when I […]
An Information Security Place Podcast – 01-22-14
Jim, Dan, and Michael have a lot of catching up to do. We talk about a lot of stuff because a lot of stuff has been […]
Podcast: Play in new window | Download (Duration: 1:00:33 — 87.2MB)
Subscribe: Apple Podcasts | RSS
Chinese Corporate Cyber Espionage by Christopher R. Lew Ph.D
I attend some of the talks at security conferences for technical interest, others for political interest. This one, at 2013 B-Sides San Francisco was the […]
How predominant is Cross site request forgery (CSRF)?
Continuing my series on the talks I attended at 2013 Security B-Sides, this one from Dan Hubbard (CTO OpenDNS) and Frank Denis (@thinkumbrella) called, “Building […]
Why are we still vulnerable to side-channel attacks? (and why should I care?)
2013 B-Sides San Francisco Talk Summary Series This was a great talk given by Jasper Van Woudenberg, from Riscure. Whenever I attend these talks, I always […]
Secure SSL, “Tales of Transport Layer Security at Twitter” from 2013 B-Sides San Francisco
SSL++; Tales of Transport Layer Security at Twitter I am happy to have attended this talk, at 2013 B-Sides San Francisco, by @jimio, a Twitter […]