Sophos Security Threat Report 2011

There are two interesting things in the security threat report 2011 by Sophos:

  • nice list of items on how to avoid being fooled by social engineering techniques (page 8)
  • some figures and information about compromised legitimate web sites (page 37):
    • 30.000 new malicious URLs every day
    • “more than 70% of these are legitimate websites that have been hacked or compromised”



“Malicious Code Detection Technologies”

There is a whitepaper (PDF) by Kaspersky titled “Malicious Code Detection Technologies” which describes some basic concepts of AV technology.

Two components:

  • technical component: selects the data that will be analyzed
  • analytical component: decision making system

Technical component (listed in terms of increased levels of abstraction):


Building a Web Application Security Program

There is a nice whitepaper by Securosis which describes how to build a web application security program:


RACI Document / Responsibility Assignment Matrix

“A Responsibility Assignment Matrix (RAM), also known as RACI matrix (pronounced /ˈreɪsiː/) or Linear Responsibility Chart (LRC), describes the participation by various roles in completing tasks or deliverables for a project or business process. It is especially useful in clarifying roles and responsibilities in cross-functional/departmental projects and processes.”[Wikipedia]



“Reducing Organizational Risk Through Virtual Patching”

“Reducing Organizational Risk Through Virtual Patching”

by Joseph Faust / SANS

Paper in SANS Reading Room


Videos 27C3

Here are some videos from the 27C3 worth viewing:


How to write good code …


Basics on Problem Solving & Investigations

There’s a nice article at SpiderLabs (Sniper Forensics – Part 1: A Brief History Lesson) which summarizes three interesting thesis and adopts them to modern problem solving and investigations (e.g. forensics).

Occam’s Razor / Lex Parsimoniae

(by William of Occam / Ockham)

When selecting hypothesis, the one that makes the fewest number of new assumptions is more likely to be correct.


Shorten Google Maps / Streetview Links

You can shorten links of Google Maps by removing all execpt the following parameters:

  • ll (position data)
  • z (zoom factor)
  • t=h (hybrid), or t=m (maps)

Similar for Google Street View:

  • ll (position data)
  • layer=c
  • panoid=.,.. (image)
  • cbp (view angle)

(source: c’t 2011-01)