You know what blue teams and red teams are. Red is our attack side, or the adversaries, and Blue is the defense side. Unfortunately, we don’t see both teams working together in many situations. Having a red team test your network or application provides a great service to understanding the weaknesses. But this is not …
Wow, I can’t believe how long this release has been in the making. a couple of years ago, we were honored to be allowed to build MobiSec under the DARPA CyberFast Track process. We released the first two version quickly after that. Then at DerbyCon last year, we offered our MobiSec course for the first …
If you haven’t seen it in the news, you must not have any technology close by. That is right.. another story about heartbleed. But this is different. The goal is to discuss the patching of this nasty bug so that consumers and companies are properly protected. We see websites telling us they have applied patches …
Last week Windows XP finally reached its end of life. The operating system was released back in 2002 and was (and still is) a favorite among many users. So what does it mean that it is now reached the end? Well.. If you are still using it, it will still work. You don’t have …
What You Need to Know and Do About It Unless you’ve been hiding under a rock, I’m sure you have heard about the overflow vulnerability in OpenSSL’s heartbeat extension. All today I watched my Twitter feed talk back and forth about this vulnerability and its impact. In fact, as I write this post a search …
All Your Base Are Belong to #HeartBleed – OpenSSL Heartbeat OverflowRead More »
Everyday we see new technology and devices in our everyday lives that are connected to the internet. Smart TVs, scales, even a crockpot. I personally have bought into the idea of the Nest products, thermostat and smoke detectors. I have a Nest thermostat and two Nest Protect smoke alarms. So far I really …
Tactical Burp Suite Webinar Secure Ideas is excited to announce its latest upcoming online training. We will be offering a two-hour session exploring Burp Suite and its use in a web application penetration test. Kevin Johnson and James Jardine will explore the various features of Burp Suite, focused on how we use the system during …
Professionally Evil Training: Tactical Burp Suite WebinarRead More »
What types of information do you copy to a shared folder? Who has access to the share? This can be a difficult problem within many organizations to handle these questions. From a user perspective, a shared folder is just a means to collaborate. We often don’t think about what type of data is in the …