Entries Categorized as 'Musings'

Catching up…

Date August 16, 2008

What with the IR gig I’ve been on, work just being out of control at the moment, as well as the usual flurry of posts after BlackHat/DefCon, I haven’t been able to keep with my reading, let alone posting.  There’s been a lot of interesting things going on which have received plenty of coverage that [...]

Posted in Industry, Musings Comments 2 Comments »

Chill, I’m Sending The Wolf

Date August 10, 2008

Every now and then I get sent out on incident response engagements.  On Wednesday the phone rang; a client had contacted us with a big ongoing incident and needed some help.  I was on the next plane out (red-eye - I hate those things!).
While onsite with the client we went to a users desktop [...]

Posted in Musings, Trip Report Comments No Comments »

VA+WAF: that’s hot!

Date June 19, 2008

So, it seems that the whole VA+WAF discussion is clearly the “hot” topic in webappsec this week.  First up we have the ts/sci post that I linked to earlier, Andre responded, and we also have a post from the guys at CGISecurity.
I’ll first address one of Andre’s comments before getting into the meat of this [...]

Posted in Musings, Security Comments 1 Comment »

Facts and Fallacies of Software Engineering

Date March 27, 2008

Via CodingHorror:
I’ve seen this book before when I taught software engineering, but never been interested in picking it up.  However, just looking at the TOC (see the CodingHorror link above) pretty much tells you all you need to know about the current state of software engineering.
When I joined Florida Tech in 2002, I was asked [...]

Posted in Musings Comments No Comments »

Wanted: More Penn & Teller’s

Date January 15, 2008

Writing about RSnake’s XSS Worm Contest reminded me of an email conversation we had a while back where the topic of discussion was how to some people “hacks” can look a lot like magic.  Just like performing magic, most hacks (discovered vulnerabilities, findings from penetration testing, security breaches, etc) are based very much off the [...]

Posted in Musings Comments No Comments »

Silver bullets or magic beans?

Date January 14, 2008

Everyone knows the story of Jack and the Beanstalk (but let me summarize for those that don’t), where Jack trades the family cow, their very last possession, for some magic beans on the way to market where he was supposed to sell it to get some money to feed them.  When Jack’s mum finds [...]

Posted in Musings Comments 3 Comments »