SecurityRatty: tag: adrian

Adrian Crenshaw - "Intro to Sniffers" from Louisville Infosec 2008

2008-10-11 16:07:20 by Editor in Irongeek's Security Site

Adrian Crenshaw - "Intro to Sniffers" from Louisville Infosec 2008 I gave this presentation for the Kentuckiana ISSA at the Louisville Infosec 2008 conference. I cover the basics of how network sniffers work, and specifically talk about Wireshark, Cain, Ettercap and NetworkMiner. I came up with the presentation on short order, so please be...

Tags: louisville infosec, sniffers, adrian crenshaw, network sniffers, presentation, intro, kentuckiana issa, wireshark, cain

Hansei and the CISO

2008-09-16 17:47:47 by Alex in RiskAnalys.is

...Adrian Seccombe. For those who know Adrian and the Trust Model - this is classified as white so its OK for public display and consumption. But heres what Adrian is trying to build at a high level So regarding Adrians program diagram Is a governance framework. Think ITIL Is a risk framework. Think ISO 27002 using FAIR as an analytical engine....

Tags: risk management requires, risk management, risk, hansei, risk register, program, manage risk, manage, adrians program diagram

Adrian Lane joins Securosis!

2008-06-11 21:48:16 by Adrian Lane in Information Centric Security

Believe it or not, I'm going to work with Rich Mogull at Securosis. Worst yet, I'm excited about it

Tags: securosis, rich mogull, worst

SQL Injection and separation of duties

2008-06-22 14:42:49 by Slavik in Musings on Database Security

Adrian Lane writes in his blog entry about separation of duties on the application level. While I agree with his sentiments I also know how hard it is to do so from the application development side. In most applications , database connections are using connection pooling. Creating such a separation makes the development process a

Tags: separation, adrian lane writes, development process, duties, application development, blog entry, database connections, application level, connection

The Perfect Storm

2008-07-17 07:15:00 by Allen Baranov, CISSP in Security Thoughts

...Adrian Lane from Securosis thinks that the falling prices in the underground economy is humorous . I disagree. I look at it as very scary and the final puzzle-piece I think that the perfect storm is about to be unleashed

Tags: information, information security, personal information, credit card details, credit card, company information, credit card theft, wide-scale information theft, credit card information

UPDATES GALORE! or, THE PRONOUN WE MEANS YOU AND ME!

2008-08-13 15:24:17 by Alex in RiskAnalys.is

...Adrian Seccombe gently reminded me that the we was now the Security Forum, and that we didnt go changing things at will without vetting against each other. Man I love this stuff. I get to run our thoughts and ideas past some great folks now - you know, those smart people who tend to have really complex problems and are trying hard to solve...

Tags: risk, risk assessment methodologies, security forum, forum, magic-fairy risk, risk standards, fair, risk-world, fair similarly helps

Gait Analysis from Satellite

2008-09-09 12:22:42 by schneier in Schneier on Security

...Adrian Stoica says it should be possible to identify people from the way they walk -- a technique called gait analysis, whose power lies in the fact that a person's walking style is very hard to disguise Video taken from above shows only people's heads and shoulders, which makes measuring the characteristic length and rhythm of a person's...

Tags: gait analysis, shadows, correct shadows, human shadows, data, gait data, regular gait analysis, video, satellite video footage

Fun Reading on Security - 8

2008-10-02 10:31:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...Adrian on behavioral monitoring ; mostly in DAM, but also elsewhere in security Premature Chasm-Crossing " - a must-read for all security vendors and especially their marketing (and their easily-excitable PR teams...) - "Shouldn't vendors be spending more time fighting the problems that security managers are facing today, right this minute?"...

Tags: security, security managers, previous security, pci, pci dss exists, computer security, pci fun, security checklists, network security

Another Google Bug Put Users At Phishing Risk Due To Domain Flaw And Frame Injection Possibility

2008-10-10 23:05:05 by CyberInsecure in CyberInsecure.com

...Adrian Pastor of the GNUCitizen ethical hacking collective, exploits

Tags: sensitive google services, users login credentials, spoof pages, adrian pastor, security flaws, google calendar, security expert, attack, collective

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo