Pentest-Lab

I've just enabled access to my notes on creating a pentest-lab:

https://admin.thierfreund.de/drupal6/pentest-lab

Please note: these are my personal hints – use them on your on risk.

[...]

Nice reads

  • DEP and ASLR explained: On the effectiveness of DEP and ASLR
    http://blogs.technet.com/b/srd/archive/2010/12/08/on-the-effectiveness-of-dep-and-aslr.aspx
  • An incident …: The Week to Top All Weeks
    http://isc.sans.edu/diary.html?storyid=10078
  • Malware analyzed: Man-In-The-Browser: The power of JavaScript at the example of Carberp
    http://trustdefender.com/trustdefender-labs-blog-man-in-the-browser-the-power-of-javascript-at-the-example-of-carberp.html

[...]

Nice Geek & Poke Comics

  • How To Make A Good Code Review
    http://geekandpoke.typepad.com/geekandpoke/2010/11/how-to-make-a-good-code-review.html
  • High-Frequency Trading
    http://geekandpoke.typepad.com/geekandpoke/2010/09/high-frequency-trading.html
  • Management Summary
    http://geekandpoke.typepad.com/geekandpoke/2010/09/management-summary.html
  • Geek&Poke's List Of Best Practices – Today: How To Handle A NPE
    http://geekandpoke.typepad.com/geekandpoke/2010/12/geekpokes-list-of-best-practices-today-how-to-handle-a-npe.html

[...]