Latest

Read this Post, Especially if You Don’t Have Time

  “Time keeps on slipin’ slipin’ slipin’, into the future” — “Fly Like An Eagle”, The Steve Miller Band Your web server’s system time can ...

Thanks for making RSA 2017 a huge success

This year there were 43,000 people in attendance at what is the largest security convention of the year, RSA Conference. The attendance is ...

Why Logs aren’t Enough for Security

 

Meet Signal Sciences At RSA 2017!

Signal Sciences is excited to announce that we are participating in 2017’s upcoming RSA Conference, held February 13–17 at Moscone Center ...

Tidal Forces and Security Disruption

  I just finished reading a wonderful piece by top notch analyst and thought leader, Rich Mogull entitled “Tidal Forces: The Trends Tearing ...
Tyler Shields
Jan 06

Sharing Threat Information with HoneyDB

Running honeypots to collect information is great. Running honeypots to collect and share information is awesome. HoneyDB is a simple web ...

Getting Started With HoneyPy — Part 3

In my last post, Getting Started With HoneyPy — Part 2, I covered honeypot services and HoneyPy’s service profiles. In this post, I’ll ...

Getting Started With HoneyPy — Part 2

source In my last post, Getting Started With HoneyPy — Part 1, I covered getting HoneyPy up and running with the very basic default ...

Getting Started With HoneyPy — Part 1

In my last post, Introduction to HoneyPy & HoneyDB, I covered the basics of honeypots and provided a brief introduction to HoneyPy. In this ...

It’s Conference Season

It’s that time again…we’ve sent our kids back to school, football season has started, and now we’re gearing up for conference season. If it ...

Cracking Security Misconceptions Book is now out!

Cracking Security Misconceptions I’m excited to announce the release of the newest O’Reilly security ebook entitled Cracking Security ...
Andrew
Sep 20

Introduction to HoneyPy & HoneyDB

Last week, I discussed HoneyPy and HoneyDB at Blackhat and Defcon. This week I wanted to dive a bit deeper into the projects.

HoneyPy at Arsenal and Demo Labs

At this year’s Black Hat & Def Con there were a few firsts for me, and it was probably one of the best experiences I’ve had at these ...

Blackhat and Defcon… It’s a wrap!

The Signal Sciences’ cabana at Blackhat Last week, we brought the Signal Sciences crew to Blackhat and DEF CON. For the uninitiated, this ...

Bug Bounties and NGWAF: 1 + 1 = 3

Return on Investment—ROI. Sales departments have to show it, marketing departments have to show it, and of course, security departments do ...

The Legacy WAF Status Quo: User Expectations Are Changing

sta·tus quo - stādəs ˈkwō/ - noun the existing state of affairs, The “existing state of affairs” is changing in the web application ...
Brian Greene
Mar 29

What security experts need to know about DevOps and continuous delivery

There are a lot of terms thrown around in modern IT and software engineering organizations DevOps, continuous delivery and build pipelines ...