If this ends up on FarceBook – please ignore it I am mucking around with code today

Lenny Zeltser and SANS Reverse Engineering Malware course put up a Malware Analysis Quiz to test your reverse-engineering skills. Obviously, its early in the morning and I should have waited until I finished my first cup of coffee before taking the test — but still didn’t fare too badly. If you take the test post your result in the comments section, and include if you were undercaffinated or not ...

Currently I’m taking the “pre-class” for the “pre-exam” for the Payment Card Industry Internal Security Assessor (#PCI ISA Certification) program. It is a slow death by acronym process. Going to sleep now

Wanted to spend the weekend riding through the mountains, but proving that she is really a mother, Mother Nature had other plans… Looks like rain all weekend With luck, my new fairing from DragonFly Cycle Concepts will arrive today or early next week. I can’t wait to be able to ride with some music playing for a change

Neil J. Rubenking has a good beginner’s article up at PCWorld describing TFA (Two-Factor Authentication). One of the barriers to TFA implementation is getting the buy-in from users and management, and these usually devolve into debates around regulation FOO requires TFA for remote access or even more esoteric information security debates over the strength of passwords, bits of information, and distributed computing password hash...

Jen and I built this house about six years ago, and finally had the driveway paved. 2250 square feet of asphalt. No, nothing #infosec related, just really happy to get it done. I now return you to your regularly scheduled #BlackHatUSA parties

Mandiant has released version 1.0 of the Open Web Application Security Project (OWASP) Broken Web Apps project virtual machine. This open source project and VM allows security professionals to test their tools and skills against broken web applications. The VM includes web based “training” applications, old vulnerable versions of real open source applications, demo pages/applications, and more to test against. To download the VM...