TRISC 2009 | Web Admin Blog

Entries for the ‘TRISC 2009’ Category

Thoughts on the TRISC 2009 Conference

Apr.09, 2009 in TRISC 2009 Leave a Comment

This was my third consecutive year attending the TRISC Conference and it gets better and better every year. This year, the location was outstanding, the presenters were top-notch, and the Keynotes were pretty good. This was my first time actually presenting at the TRISC Conference and I thought they did an excellent job from the […]

Tags: 2009, allen, casino, Conferences, hansen, infrastructure, johnny, ken, keynote, long, night, randy holloway, regional, ricky, robert, rsnake, Security, texas, trisc, watson

Anatomy of an Attack: From Incident to Expedient Resolution

Mar.25, 2009 in TRISC 2009 Leave a Comment

For the first session of the morning on the last day of the TRISC 2009 Conference, I decided to attend the “Anatomy of an Attack: From Incident to Expedient Resolution” talk by Chris Smithee, a Systems Engineer at Lancope. He talked about the different types of attacks that you see on your network and how […]

Tags: anatomy, attack, data, flow, incident, resolution, tools

PCI Compliance – Convert Drudgery Into a Powerful Security Framework

Mar.24, 2009 in PCI, TRISC 2009 Leave a Comment

For my last session of the day at TRISC 2009, I decided to attend Joseph Krull’s presentation on PCI Compliance. Joe works as a consultant for Accenture and has performed 60+ PCI engagements for various companies. If your organization does any processing of credit card information, my notes from that session below should be useful: […]

Tags: compliance, dss, PCI, Security

Security Policy Architecture – How to fix your current disaster

Mar.24, 2009 in TRISC 2009 Leave a Comment

One of the sessions that I attended during the day on the Tuesday of TRISC 2009 was by Doug Landoll from Lantego on “Security Policy Architecture”. The presentation was a very good overview of how to put good security policies in place that are easily auditable should that need arise and that are as comprehensive […]

Tags: architecture, policy, Security

Deep Packet Inspection and the Loss of Privacy and Security on the Internet

Mar.24, 2009 in TRISC 2009 Leave a Comment

For my first session of the day on Tuesday of the TRISC 2009 conference I attended a presentation by Andrew MacFarlane from Data Foundry, Inc. on “Deep Packet Inspection and the Loss of Privacy and Security on the Internet”. While the concept of DPI is nothing new to me and I remember first hearing about […]

Tags: deep, dpi, inspection, internet, loss, packet, privacy, Security

The Importance of Log Management in Today’s Insecure World

Mar.23, 2009 in Log Management, TRISC 2009 Leave a Comment

For my last session of the first day of the TRISC 2009 Conference, I made the mistake of attending Ricky Allen and Randy Holloway’s presentation on “The Importance of Log Management in Today’s Insecure World”. I say “mistake” because out of all of the presentations I attended over the entire three days of the conference […]

Tags: log, Management

Assessing Your Web App Manually Without Hacking It

Mar.23, 2009 in TRISC 2009 Leave a Comment

After giving my presentation on “Using Proxies to Secure Applications and More” at the TRISC 2009 conference, I decided to attend the presentation by Robert “RSnake” Hansen and Rob MacDougal entitled “Assessing Your Web App Manually Without Hacking It”. The gist of this presentation was that with a few simple tools (Web Developer Toolbar, NoScript, […]

Tags: app, application, assessment, manual, penetration, testing, web

Spear Phishing – Breaking Into Wall Street & Critical Infrastructure

Mar.23, 2009 in Phishing, TRISC 2009 Leave a Comment

For my first breakout session of the TRISC 2009 Conference, I decided to check out Rohyt Belani’s presentation on Spear Phishing. Rohyt is the CEO of Intrepidus Group and has spoken at a variety of conferences from BlackHat to OWASP to MISTI to Hack in the Box. I had heard from several other conference attendees […]

Welcome to WebAdminBlog!

This blog site is run by Josh Sokol, the Founder and CEO of SimpleRisk, a free tool for Governance, Risk Management, and Compliance. Josh is a former Web Admin and Information Security Program Owner of National Instruments.

Categories
Recent Posts
Recent Comments
devops
Links
Security
Tags
21ct agile amazon analysis application appsec attack aws browser cloud Cloud Computing code Conferences data devops ec2 firewall google hansen internet lynxeon malware Management network Operations owasp PCI performance project rsnake SaaS secure Security strategies velocity velocity08 velocityconf velocityconf08 velocityconf09 Virtualization vpn vulnerability waf web wifi
Categories
- Advertising (2)
- Application Performance Management (14)
- Automation (4)
- Browsers (4)
- Cloud Computing (9)
  - Elastic Compute Cloud (3)
- Conferences (64)
  - BSides Austin 2013 (1)
  - BSides Austin 2016 (1)
  - OWASP AppSec DC 2009 (16)
  - OWASP AppSec NYC 2008 (18)
  - OWASP LASCON 2017 (1)
  - OWASP LASCON 2018 (1)
  - TRISC 2009 (8)
  - Velocity 2008 (8)
  - Velocity 2009 (8)
- Content Management (2)
- Featured (3)
- Green Computing (1)
- High Availability (1)
- Log Management (2)
- Management (4)
- Monitoring (4)
- Networking (12)
  - Firewalls (4)
  - NetFlow (4)
- Operating Systems (2)
  - Linux (2)
  - Mac OSX (1)
  - Unix (2)
- Operations (11)
- Popular (2)
- SaaS (2)
- Sarcasm (1)
- Search (1)
  - Enterprise Search (1)
- Security (75)
  - Access Management (1)
  - Capture the Flag (4)
  - Cloud Computing (4)
  - Compliance (1)
  - Disaster Recovery (1)
  - Malware (4)
  - Metrics (2)
  - OWASP (2)
  - PCI (2)
  - Phishing (2)
  - Physical (1)
  - Risk Management (2)
  - Virtualization (3)
  - Web Application Security (32)
    - Dynamic Analysis (1)
    - Static Analysis (1)
  - Wireless Networks (5)
- Service-Oriented Architecture (1)
- Software and Tools (15)
  - Crashplan (1)
  - Drobo (1)
  - GRC (1)
- Training (2)
- Uncategorized (1)
- Virtualization (4)

Blogroll
- Agile Operations Blog
- Agile Testing
- Agile Web Operations
- Amazon Web Services Blog
- dev2ops – Web Ops at Scale
- Gilligan on Data Web Analytics pro tips
- ISSA Home The Information Systems Security Association (ISSA)® is a not-for-profit, international organization of information security professionals and practitioners.
- Kitchen Soap, A WebOps Blog
- Michael Howard's Blog Software security guy at Microsoft.
- National Instruments Home The majority of the contributers here are current or past NI employees.
- OWASP Home The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software.
- RSnake's Blog ha.ckers.org web application security lab
- Server Fault
- Steve Souders’ Blog Google High Performance Guru
- The Madstop
- The Open Minded Enterprise
- The Simple Logic
- Transparent Uptime blog
Archives
- March 2019
- October 2017
- April 2016
- January 2016
- December 2015
- May 2015
- November 2014
- August 2014
- June 2014
- May 2014
- October 2013
- September 2013
- August 2013
- May 2013
- March 2013
- February 2013
- October 2012
- May 2011
- April 2011
- December 2010
- July 2010
- June 2010
- April 2010
- March 2010
- February 2010
- January 2010
- November 2009
- September 2009
- July 2009
- June 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
Tag Cloud
21ct agile amazon analysis application appsec attack aws browser cloud Cloud Computing code Conferences data devops ec2 firewall google hansen internet lynxeon malware Management network Operations owasp PCI performance project rsnake SaaS secure Security strategies velocity velocity08 velocityconf velocityconf08 velocityconf09 Virtualization vpn vulnerability waf web wifi

Real Web Admins. Real World Experience.

Entries for the ‘TRISC 2009’ Category

Welcome to WebAdminBlog!

Categories

Recent Posts

Recent Comments

devops

Links

Security

Tags

Categories

Blogroll

Archives

Tag Cloud