- Hits: 32550
Russ McRee's HolisticInfoSec.org is dedicated to sharing information security content and resources in an open, clear manner, with the hope of helping improve infosec for all who seek to do so. Information security is best broken down to the most simple components: best practices and common sense. The threat-scape facing an information security practitioner is perpetually dynamic; we must adapt and evolve as do those threats. Holisticinfosec.org endeavors to aid in that process through dynamic content and timely topics in ISSA Journal's toolsmith. As well we know, those who would do harm never rest: protect your own.
Seek to be proactive, rather than reactive
Think creatively, but adhere to standards
Employ best practices
- Hits: 22621
- Hits: 3649
A video recording of Russ' RSA Conference 2012 presentation, Evil Through The Lens of Web Logs, is available on YouTube. This is a short version, intended to be TED-like, of an hour long presentation. The slide deck for the full presentation is available here.
Web logs can be analyzed with specific attention to Internet Background Radiation (IBR). Two bands of the IBR spectrum include scanning and misconfiguration where details about attacker and victim patterns are readily available. Via web application specific examples this discussion will analyze attacks exhibiting traits, trends, and tendencies from the attacker and victim perspectives.