Afficher toutes les publications

McAfee ePolicy Orchestrator: Creating an Apache HTTP Repository (English)
This document describes how to configure Apache and Samba running on a Linux operating systems (OS) platform for the purpose of creating an Apache HTTP Repository for McAfee ePolicy Orchestrator. The Apache repository will allow customers to meet the requirement to have a Linux repository.
Sujets : Gestion de la sécurité, Foundstone

Detecting Botnet Propagation (English)
This paper explains botnet propagation techniques uncovered during a recent investigation along with the tools and techniques used to quickly evaluate two separate events.
Sujets : Foundstone

Creating and Maintaining a SOC (English)
This paper explains how strong people and well-defined processes can result in an operationally effective SOC.
Sujets : Foundstone

PCI Guidance: Microsoft Windows Logging (English)
Logging is normally something that is done to help troubleshoot system availability issues. This paper helps system administrators meet PCI logging requirements by capturing who did what and when, establishing alerts to detect issues that could indicate a system breach and exposure of credit card data.
Sujets : Foundstone

A Pentester’s Guide to Hacking OData (English)
The Open Data Protocol (OData ) is an open web based RESTful protocol for querying and updating data. This paper discusses OData penetration testing methodology and techniques.
Sujets : Foundstone

Bypassing CAPTCHAs by Impersonating CAPTCHA Providers (English)
CAPTCHA providers allow websites to integrate anti-automation mechanisms by offering CAPTCHA generation and verification services along with the libraries to consume those services.
Sujets : Foundstone

Emergency Incident Response: 10 Common Mistakes of Incident Responders (English)
This paper summarizes the top 10 incident response mistakes in the field, highlights issues so you can review your incident response practices, and determines whether you suffer from these shortcomings.
Sujets : Foundstone

Know Your Digital Enemy (English)
In this paper, you will learn the dangers of the Gh0st RAT malware.
Sujets : Foundstone

Attacking CAPTCHAs for Fun and Profit (English)
As observed in this paper, an assumption or a slight oversight can render a CAPTCHA implementation weak or even ineffective. To have an effective protection against automated forms submissions, it is important to build a strong CAPTCHA ecosystem. A weak CAPTCHA implementation can only provide a false sense of security.
Sujets : Foundstone

Microsoft Dynamics AX (English)
This paper provides an overview of security best practices and concepts that can be applied to new or existing Dynamics AX environments. The aim is to familiarize security managers, IT administrators, developers, auditors, and business analysts with risk mitigation techniques.
Sujets : Foundstone