"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts. - Gene Spafford"

RSS

2012 Toolsmith Tool of the Year: ModSecurity for IIS
The 2012 Toolsmith Tool of the Year is ModSecurity for IIS!
Congratulations to the ModSecurity for IIS team!
I ask that those of you with the wherewithal and resources to do so please visit the project page  and donate in any capacity you can.
Congratulations and thank you to all participants this year and I look forward to a strong 2013.
 
Welcome

Russ McRee's HolisticInfoSec.org is dedicated to sharing information security content and resources in an open, clear manner, with the hope of helping improve infosec for all who seek to do so. Information security is best broken down to the most simple components: best practices and common sense. The threat-scape facing an information security practitioner is perpetually dynamic; we must adapt and evolve as do those threats. Holisticinfosec.org endeavors to aid in that process through dynamic content and timely topics in ISSA Journal's toolsmith. As well we know, those who would do harm never rest: protect your own.

 

Twitter Button

 

Practice simplicity
Seek to be proactive, rather than reactive
Think creatively, but adhere to standards
Employ best practices
 
toolsmith
February's toolsmith discusses Pwning the Person with Dave Kennedy's Social-Engineer Toolkit (SET)
toolsmith offers insights on tools useful to the infosec practitioner, typically open source and free.
The ISSA Journal is available to members in print and online at issa.org. Article copies are available on the toolsmith page.