Most companies have external auditors come in to ensure that regulator measures and processes are in place for a variety of reasons. In the case of auditors, they need to seem validate and have access to some immensely critical and valuable company data, even to the point they have to access and review the crown [...]
After a bit of inbox spring cleaning I found this in an RSS feed on how to approach a discovering you have a Cross-Site Scripting and SQL Injection issue on one of your systems. Both papers are published from Microsoft Security Development Lifecycle (SDL) team, but have a host of industry names that have contributed [...]
It is the first time the Advanced Security Essentials – Enterprise Defender (SEC501) class has been run in Australia and to have the course author, Dr Eric Cole, teaching it was fantastic. I have had said before, Eric is a fantastic speaker, bring a huge amount of energy and real world experience to the material. [...]
Stumbled over this while working on my offensive security course work. The study took a “short break” while I thumbed through the pages. So far, it looks excellent and for a great cause too. METASPLOIT UNLEASHED – MASTERING THE FRAMEWORK This free information security training is brought to you in a community effort to promote [...]
Dr. Johannes Ulrich, from SANS, is giving a talk on what every pen tester should know about web applications This is an interactive talk, so if web applications is your thing, or you’re a penetration tester then tune in and ask away. It’s at lunch time, 12pm on Wednesday the 30th of September, so stick [...]
