Most Discussed
The Biggest Challenges Facing Spam-Fighters
This article starts off by providing frightening SPAM statistics, such as; "roughly 75% of internet mail is SPAM." The author then talks about the economics of SPAM bots and his conversation with different anti-spam vendors. It covers many...
Assessing and Securing a Novell Netware Environment
This paper is designed to aid a Security Administrator and or Security Auditor in assessing the risks and vulnerabilities of a Novell Netware environment and to aid the administrator in removing, limiting, and/or monitoring those risks. Many tools us...
Getting a CISSP
Kerry Thompson provides this first hand account of his experience's with the CISSP. "In March of 2001 I started on a mission : to get a CISSP certification. "Easy", I thought, do some studying, sit an exam, pass with flying colors, t...
Firewall-1 NG Rules to Allow VRRP Traffic
Exactly what rules do you need to have to keep VRRP working on a Nokia Checkpoing firewall? Mitchell Rowton provides a list of rules to allow VRRP traffic.
New German Laws on Cybercrime
Germany is passing some new laws regarding cybercrime that might affect security professionals. Federico Biancuzzi interviewed Marco Gercke, one of the experts that was invited to the parliamentary hearing, to learn more about this delicate subject. ...
Netcat for the Masses
Dean DeBeer submits this paper on usage of the swiss army knife of technology, Netcat.
Distinguishing attack on FastFlex stream cipher
Fastflex is a fast and flexible stream cipher that is designed for hardware and software environments. In this article,written by Mohammad Ali Orumieh Chi Ha, we point out that the keystream generated from FastFlex can be distinguished from a truly r...
Business Contingency Planning and Post September 11th, 2001
Brett Pladna submits this paper that discusses the lessons learned by many companies following Septemeber 11th, 2001.
The Patriot Act and Illegal and Legal Electronic Warrantless Searches
A very insightful look in to the United States' Patriot Act and what it means to you by Karen Watson.
Unique Group Policy Security Settings
Enforcing Group Policy Security Settings (including some in-depth Registry hacks), and some of the most common scenarios where security settings do not behave as they appear.
The Analogy of Pop Ups
Aditya Sood submits this paper which discusses the latest third party popup attacks that are performed by an attacker from the rogue and vulnerable links of the web sites to circumvent the normal functioning on the web. Excellent examples and proof ...
OS and Application Fingerprinting Techniques
This paper will attempt to describe what application and operating system (OS) fingerprinting are and discuss techniques and methods used by three of the most popular fingerprinting applications: nmap, Xprobe2, and p0f. I will discuss similarities an...
Web Application Hacking vs the IDS
This paper discusses the constantly changing landscape of web application hacking and how this can be detected with an Intrusion Detection System (IDS). The author pays particular attention to encoding, or the process by which information is taken f...
Is Your Agency Failing FISMA?
Is your agency failing to meet its Federal Information Security Management Act (FISMA) requirements? If so, perhaps it's because you feel that FISMA has become nothing more than a "paper drill." Or perhaps you feel that the auditors have ...
Misconceptions about the importance of IT certifications
It's one of the most highly contested issues in our field. Some people love them, some people hate them, but everyone has passionate theories about their validity.
