Article Archive

CISM Chapter 2 – Information Risk Management (IRM) IRM accounts for 22 percent of the CISM exam or about 44 questions.  In 2010, ISACA reorganized the CISM...

grep The grep utility, which allows files to be searched for strings of words, uses a syntax similar to the regular expression syntax of the vi, ex, ed, and...

PORTIONS OF THE BELOW EXPLANATION HAVE BEEN SOURCED FROM DLL HIJACKING DEFINITION AT MARAVIS.com AND HAVE BEEN GRANTED PERMISSION TO USE HERE AS A MEANS TO...

To use a keyboard shortcut, or key combination, you press a modifier key with a character key. For example, pressing the Command key (the key with a  symbol)...

This tutorial will cover the process of writing an SEH based buffer overflow exploit for a known vulnerability in the Vulnserver application. Vulnserver is...

echo 1 > /proc/sys/net/ipv4/ip_forward enables ipv4 forwarding on backtrack, and other distros. Bash commands cut -d" " -f2 > new  (cuts from an...

Description: A bug in Chinese video streaming software leads to mass open proxies on the web. A security blogger has uncoverd a flaw in the Chinese PPLive...

Description: Parsing the OWASP Top Ten with a closer look at Cross-Site Request Forgery (CSRF). No freely available or open source tools "automagically" discovers CSRF vulnerabilities; you have to step through the app as described above and test against locally installed vulnerable applications and devices unless you have explicit permission to test remote applications per an approved penetration testing engagement....

There are eight (8) task statements for ISG and twenty (20) knowledge statements. The eight task statements are covered in this post by Ken....

The final installment of the 3-part series covers the loading the bootkit previously discussed in part 2....