I remember seeing Julian Assange speaking at one of the Ruxmon meetings earlier this year and not long after, I got into a discussion with another infosec consultant who was in attendance. We were discussing whether we thought Wikileaks should have posted the Collateral Murder video. His view was that, ... Read More

I recently read a presentation by Ivan Ristic (ModSecurity fame). You can find it here. It struck a chord with me and I wanted to share this gem.In infosec we suffer either one of two conditions (generally) - either we suffer from tunnel vision, focusing on minutae that are rarely ... Read More

Last week I did my SABSA training and certification. I don't know how I went but I wanted to share the results of what I learned.This post is long and I make no apologies for it. I wish someone had a post like this before I started on the training ... Read More

EDIT: My Rapidshare link broke so I've resubmitted it using Google Docs.Well my talk at Ruxcon is said and done. My slides can be found here.Truth be told, it went better than I expected. I was worried that since I was not posting 0day code or providing a tool that ... Read More

GiddayIt has been awhile but I will do a proper blog update soon. This week has been a build up for me on a number of levels, I've been up in Sydney completing the SABSA training, trying to study for that, polish up my talk then race back for Ruxcon ... Read More

I don't want this post to degenerate into a mindless, multi part rant as if I have all the answers as to why projects fail. However I felt that at least one post one the most common cause of project failure that I have witnessed is most undoubtedly worthy of ... Read More