Lesson 13: Just this week, in lessons 12 and 13, we’ve covered — at least partially — how to significantly reduce risk and vulnerability to system and network infrastructure.  We touched on protecting applications, but we weren’t able to go into specific detail about how to handle the path of execution to the attacks, only […]

Lesson 12: Yesterday, I shamelessly recommended to ditch all commercial networking gear. In the same breath, I also made several Cisco configuration recommendations. This is just the way that I work. The idea is that network appliances increase risk, but at the same time — they also allow you to connect to […]

Lesson 11: Welcome back! I know that the last few weeks have been a lull, and even before ShmooCon there wasn’t a lot going on our security blog. However, you’re in for a real treat since I’m back with the daily ITSM Vulnerability Assessment techniques!
It’s no longer Spring break (well it is Spring […]

Taking care of business
Before I get into this post, I wanted to give you some updates on progress of other projects here at TS/SCI Security.
First off, I’ve been working on the OWASP Evaluation and Certification Criteria Project and hope to announce something very soon. Secondly, you’ll want to take a look at today’s post […]

I’ve been doing some work lately with text files and have been using various shell command techniques to manipulate them for whatever purposes I need. This isn’t a HOWTO guide as much as it is a reference for myself and others that just need something quick to work off of.
The first command I reach for […]