Interesting Information Security Bits for 10/20/2008

October 20, 2008

Good afternoon everybody! I hope your day is going well.

Here are today’s Interesting Information Security Bits from around the web.

  1. pdgmail: new tool for gmail memory forensics << SANS Computer Forensics, Investigation, and Response
    If you use GMail, you should really read this article. Sandboxing in some fashion sounds like a really good idea.
  2. TaoSecurity: Trying Firefox with CMU Perspectives
    Much like the web of trust used in GPG signatures, Perspectives for Firefox uses a groups of “notaries” to verify the authenticity of a self-signed ssl certificate. Interesting stuff.
  3. extern blog SensePost;
    The OWASP NYC talks have been posted.
  4. spylogic.net – Information Gathering with Maltego
    Tom has posted his slide deck for the presentation he gave at the Northeast Ohio Information Security Forum last week.
  5. Carnal0wnage Blog: Webapp Asssessments Rule or ‘why running as ‘dbo’ is bad!
    Another fun, as in oh my goodness, read about a pentest. This time an appsec test.
  6. Carnal0wnage Blog: A Successful Pentest with some Failures.
    A nice description of a pen test.

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Advertisements