There are no dumb questions

With the success of my bsides slides/talk I have been really expanding my speaking engagements. Having worked in the information technology field now for over 16 yrs. specializing in information security that spans private/public sectors, technical and managerial, interfacing with all levels of end users from executives to interns.  Throughout my career, I have fielded […]

Mobile device forensics

Headed over to the Maritime Institute for a little mobile forensics training. Class just kicked off – seeing all the toys in the corner of the class I think this will be a fun “hands-on” class. Granted thus is still an ISACA training event so I am not sure how technical it will get but […]

BSides Deleware

Interested in coming out to a free security conference fairly close to the Maryland area? Interested in hearing me speak? Want to get away from a day of work? If you answers yes to any of these questions may I suggest you Google BSides Deleware. BSides offer a great learning opportunity and are free (registration […]

DerbyCon Videos

I had the luxury of attending DerbyCon this year – my first.  There have been several write-ups about how good the conference is – and yes I agree that it is top notch but that is not why I am writing this post. I am writing to thank the AV staff at DerbyCon – specifically […]

ISACA Training

The “Rabbott” and I were chatting this morning and got on the subject of training and she was asking me if I was going to any of the upcoming ISACA seminars/training events.  Short answer is I am going to try and get to 1 or more of them – but enough about that, back to […]

Powershell

I have been updating my usb rubberducky recently and leveraging a lot of good power shell scripts from the community. I am the type of person that likes to understand what is going on in a script so as part of payload creation/translations so I have been ramping up on power shell. Today I wanted […]

Exploit exercises

For all of those interested in taking their “hacking” to new heights check out www.exploit-exercises.com and start playing around. I personally haven’t downloaded them yet (although I will soon and provide comments as needed) but have heard a lot of good things about them. A couple of tips as you work your way through the […]

BrightTalk

I recieved my weekly BrightTalk update over the weekend and that is when I realized I never mentioned them in my education section. BrightTalk (http://www.brighttalk.com/community/it-security/channels) offers a lot of intersting presentations to include infosec related (the channel I linked to). While I find their topics slightly biased to the presentor’s company stance on the given […]

Security Tube

While on the subject of Infosec courses, I wanted to mention Security Tube http://www.securitytube.net/ they offer a variety of courses and certifications. Although some of their courses do cost money, they offer some free ones as well.  I am not sure how much weight their certifications hold but they are better than nothnig, espescially if you […]