Vulnerability Analysis is deceptively easy. Security Red Teaming requires more than that.
The Deep Web. The Deepnet. The Invisible Web. The Hidden Web.
Maybe you have heard of the Deep Web. Maybe you even know how to access the Deep Web.
Chances are though, you've never heard of the Deep Web and you have no idea how to access it. The Deep Web sounds mysterious, elusive and somewhat dangerous. By all accounts, it is all these things.
So, what is the deep web? How does the deep web work? How do you access it?
In this installment of "How the Internet Works", we tackle the mysterious Deepnet.
It's very easy, after reading "The Snappening" Snapchat security breach news, to determine fault lies with users. It would be very easy and convenient to blame the leak not on the leakers, but on the users who sent sexually explicit materials to friends, lovers and strangers. This conclusion is easy to draw yet, it only skims the surface of the true issue at hand.
Whatever you think of the materials leaked, the larger issue at play in "The Snappening" is how the public relates to, understands and uses public Internet architectures. If anything, "The Snappening" should serve as a beacon call for greater Internet security practice enlightenment.
In this version of "How the Internet Works" we cover public Cloud architectures and the need for increased Internet security practices learning.
For the past week or so, Hong Kong has erupted with peaceful demonstrations advocating for the ousting of the Chinese premiere and the right to peacefully and openly elect his replacement. While the Chinese premiere, Xi Jinping, looks to be going nowhere one thing has become clear - the mobile devices and Internet connections which helped to grow the nightly demonstrations are quietly suffering an inward meta problem - malware, viruses and fake applications.
As mobile platforms become more prominent and are used more robustly to organize, carry out financial transactions and conduct daily personal business, the time has come to address mobile malware and fake applications.
Dr. Dobb's has announced the results of its annual Jolt Awards in the Best Books Category. The awards cover nominated books published during the twelve months ending June 30th. A total of 9 judges reviewed dozens of nominations to ultimately announce The Jolt Award for the year's best book, along with two Jolt Productivity and three Jolt Finalist awards.
The Jolt Award-winning Author for 2014 is (...drum roll...) Mark Summerfield, who here discusses his lauded book, Python in Practice: Create Better Programs Using Concurrency, Libraries and Patterns.
I get it.
You're new to the Linux Command Line and truth be told, you might be a little intimidated. Coming from the comfort of a PC or Mac desktop, the Linux Command Line (CLI) looks nothing like what you normally use. The Linux CLI is dark, it's secretive, it's bare bones minimal and it's anything but friendly to newcomers. And yet, the Linux CLI is highly useful, essential to using your Linux box or virtual machine and can, if done right, provide you with more insight and practical use than the Windows or Mac desktop ever could.
For those reasons, from someone who was also once a Linux newb, I present the top ten Linux CLI commands you need to master for basic Linux CLI comprehension.
This list will not make your a Linux System Admin however it will get you on your way with your foot in the ocean.
How do you evaluate the many new mobile device choices?
My family and I had a meal in Pigeon Forge, in an old mill building that's quite old, in an area settled in 1830. Walking in with a MacBook Pro certainly seemed odd to some, but no one noticed my phone offering tethering rights. And so it was that I posted a blog in a building that dated back 160 or more years ago.
I’m outside the Cades Cove visitor’s center, hearing acoustical
instruments like bangos and hammered dulcimers play. I have my MacBook
Pro, alive—charged and ready. My phone is charged and ready and has a
tethering plan, just begging to be used.
I am signal-less.
On August 20th, the father of C++, Bjarne Stroustrup led a Google On-Air Live Hangout event in which he talked about everything C++. The event was sponsored by InformIT, Pearson Education and the Google + C Plus Plus Community.
Everyone, every online user, at some point in time (most probably during a purchase) has outwardly professed "COME ON!" when trying and failing to enter a CAPTCHA.
There is an old Ellen Degeneres joke which dryly states whoever is in charge of CD packaging must be sarcastically mean. Personally, this is how I feel about the inventor and users of the CAPTCHA.
Where did the CAPTCHA go wrong? How did it start with the best intentions of hackers and grow into a security solution almost guaranteed to cause cart abandonment? Why does the CAPTCHA make me/us so mad? Why hasn't something else come along to replace the CAPTCHA yet?
In this post, we explore the history of the CAPTCHA, noted issues with the bot/spam tech and possible alternatives.