Posted inApplication Security
Whitelisting in Java
Java vulnerabilities and zero day exploits are very common these days. It has take to the extend that security experts start recommending disabling the Java whenever possible. Now Java has…
Posted inData Protection
Encryption and Security, think again
NSA is accused to be spying on the people for years. In a recent article, NewYork Times describes the strategies by NSA on the exploitation of the implementation flaws in some…
Posted inSecurity Tools Tutorials
WireShark Tutorial
Wireshark is a one among the top sniffing tools used by any network / security analysts. Here are to great videos on the tips and tricks of using Wireshark Tutorial…
Posted inIdentity & Access
Privileged account management solutions
Privileged accounts like System Administrators and Network Administrators have elevated privileges in a system. Capabilities such as unlimited access, bypassing the audit function etc are part of these accounts. This…
Posted inSecurity Tools
NMAP Tutorials–Video
Most of us use nmap as a tool for performing security assessments. NMAP helps us in many ways. When we built a team for security assessments, we thought of developing…
Enterprise Information Security
Enterprise Information Security is receiving a lot of attention these days. Especially with the wide reach of media and Internet, Enterprise Information Security Incidents get maximum coverage in no time.…
Posted inPCI DSS Compliance
PCI DSS & Network Devices
PCI DSS requirements say many things about network security to make the card holder data safe and protected when it is stored, transmitted & processed. How we can achieve the…
Posted inCyber Attacks
Advanced Persistent Threats – Detection
When an attacker targets someone or some organization (target) to obtain or change information using ways that are difficult to detect and exploit. Attackers use advanced mechanisms to perform he…
Posted inCloud Security Reports & Whitepapers
CSA releases SecaaS Implementation Guidance for Identity and Access Management
In the recent past CSA has defined the categories of security services that can be offered as Security as a Service. The functionalities listed in each category as part of…
Posted inCloud Security Reports & Whitepapers
Cloud Security Alliance Guidance on Security as a Service (SecaaS)
The CSA (Cloud Security Alliance) has issued a new guideance with a focus on how security can be provided as a service (SecaaS). This document covers 10 categories of services…