7Elements
Resilient Information Security
I recently had the opportunity to speak at the Edinburgh Symposium on Information Security: Governance, Sharing and Risk in a Digital Age on the topic of resilient information security. Testing for an organisation's resilience to an Information Security ...
Resilient Information Security
I recently had the opportunity to speak at the Edinburgh Symposium on Information Security: Governance, Sharing and Risk in a Digital Age on the topic of resilient information security. Testing for an organisation's resilience to an Information Security ...
Cell Injection
[Cell Injection] Attacking the end user through the application.[Introduction]At 7 Elements our approach to application security testing blends the identification of technical exposure with business logic flaws, which could lead to a breach ...
Port Scanning the World
Or just “large sized networks”Intro In his spare time Tiago leads a Portuguese based research team. Recently they have undertaken a research project to port scan the world. In this blog post ...
7E Careers – New year, new opportunity
We're hiring!Building on a successful 2012, we are now looking for an experienced security tester to join our highly capable technical team. If you share our vision and passion for security we ...
Splunk: With Great Power Comes Great Responsibility
Splunk backgroundSplunk is a fantastically powerful solution to "search, monitor and analyse machine-generated data by applications, systems and IT infrastructure" and it's no surprise that many businesses are turning to it in ...
Abusing Splunk Functionality with Metasploit
In our post Splunk: With Great Power comes Great Responsibility we outlined how the sheer power and flexibility of Splunk can be abused to gain complete control of the server upon which Splunk ...
Threat: The Missing Component.
Threat: The Missing Component.It is now widely acknowledged that risk management is the best way to manage security and security risks are beginning to be integrated into organisations’ business risk management structures ...
We’re hiring!
To help us find the right people, we wanted to give you more information about 7E as a company and what it is we are looking for. So what are we about?Well firstly, ...
Using tcpdump for network analysis
For this post, we are going to look at using tcpdump to investigate potentially malicious traffic and the steps required to complete an investigation. This blog post is based on an answer that ...
