auditing

Improve your firewall auditing

January 4, 2013

As a penetration tester you have to be an expert in multiple technologies. Typically you are auditing systems installed and maintained by experienced people, often protective …

Top 10 risks found by your auditor

December 26, 2012

KirkpatrickPrice offers a list of the most common risks they find. 1. No formal policies and procedures Formal guidelines of policies and procedures help provide your …

Security posture management from FireMon

May 30, 2012

FireMon announced Security Manager 6.0, a security policy and posture management solution that integrates risk analysis with configuration management, enforcement and auditing …

Nmap 6 released

May 22, 2012

Nmap is a free and open source utility for network exploration or security auditing. Nmap uses raw IP packets in novel ways to determine what hosts are available on the …

World renowned experts to examine SSL governance

April 26, 2012

Just two months from its inauguration date at the RSA Conference in San Francisco on February 29, the Trustworthy Internet Movement (TIM) announced today that it has chosen …

Nessus 5.0.1 vulnerability scanner released

April 16, 2012

Tenable release of Nessus 5.0.1, a vulnerability and configuration assessment solution for enterprises and security professionals. This release improves the stability on all …

Information auditing training at SANS Secure Europe 2012

April 5, 2012

SANS Secure Europe 2012, one of the region’s largest infosec training events will be offering a new course this year to help business and technical staff learn the …

A new security strategy for Sony

March 12, 2012

2011 was a tough year for Sony. Having been attacked over 20 times by hacktivists going after its websites, the PlayStation Network, its customers’ and company …

Cloud-based fuzzing for zero-day vulnerability discovery

January 25, 2012

Codenomicon released the Fuzz-o-Matic cloud-based software security Testing-as-a-Service (TaaS) platform for enterprise software and applications running on Windows, Linux, …

Qualys expands its FreeScan service

January 20, 2012

Qualys announced its new and improved FreeScan service to help SMBs audit and protect their web sites from security vulnerabilities and malware infections. The new FreeScan …

Windows Phone App Analyser 1.0 released

January 20, 2012

David Rook, the author of the acclaimed security code review tool Agnitio, today released version 1.0 of Windows Phone App Analyser, an application that can be used to …

Ettercap 0.7.4 released

December 6, 2011

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data …