Andrew Hay » Suggested Blog Reading

Aug 18

links for 2010-08-18

icon1

Andrew Hay | icon2

icon2

Suggested Blog Reading | icon4

icon4

08 18th, 2010| icon3

icon3

Anton Chuvakin Blog – "Security Warrior": SIEM-related Job: Principal SIEM Consultant

(tags: siem jobs)
Digital Forensics: Introducing ForensicArtifacts.com

(tags: forensics website)

Aug 12

links for 2010-08-12

icon1

Andrew Hay | icon2

icon2

Suggested Blog Reading | icon4

icon4

08 12th, 2010| icon3

icon3

Logblog: Next Generation Log Management – The Platform Principle

(tags: log)
Metasploit: W3AF: An Open Source Success Story

(tags: w3af)
“My God, What Have [They] Done?” | the dialog

(tags: log siem esim)
Airing Private Cloud’s Dirty Laundry… | Rational Survivability

(tags: cloud)
Our Solr system | Loggly

(tags: log)

Jul 22

links for 2010-07-22

icon1

Andrew Hay | icon2

icon2

Suggested Blog Reading | icon4

icon4

07 22nd, 2010| icon3

icon3

Forensic 4cast Episode 31 – They try to send me off to DC but I say R-M-O

Lee, Joe, Eric, and I discuss Paul Sanderson’s blog post on forensic practitioners, how the current financial situation is affecting forensics, tips for graduates trying to get into the field, the SANS Forensic Summit, and the Forensic 4cast Awards.

(tags: forensics gcfa)

Jul 19

links for 2010-07-19

icon1

Andrew Hay | icon2

icon2

Suggested Blog Reading | icon4

icon4

07 19th, 2010| icon3

icon3

SAGAN: An open-source event correlation system – Part 1: Installation

How have I not heard of this program before?

(tags: correlation, SIEM, ESIM, log management)

Jun 24

links for 2010-06-24

icon1

Andrew Hay | icon2

icon2

Suggested Blog Reading | icon4

icon4

06 24th, 2010| icon3

icon3

Anton Chuvakin Blog – "Security Warrior": How Do I Get The Best SIEM?

Great post by Anton on picking the best SIEM even though I disagree with some of his statements.

(tags: SIEM ESIM chuvakin)
Web Server Log Forensics App Wanted ha.ckers.org web application security lab

I read this and immediately thought "Wow, every ESIM vendor needs to read this post and think about how to tackle the problem".

(tags: SIEM ESIM log web application security)
McAfee Security Insights Blog » Blog Archive » Advanced Persistent Threat (APT)

Another good write-up on APT by Eric Cole.

(tags: APT hacker)
Security Intelligence: Defining APT Campaigns

Excellent write-up about how to define APT campaigns

(tags: hacker APT)
Logblog: An event by any other name

Ever curious about what the acronym EPS was referring to in everyones ESIM marketing documentation?

(tags: SIEM ESIM log logging)
TaoSecurity: CloudShark, Another Packet Repository in the Cloud

Wow, this is a very interesting method for collaborative packet analysis.

(tags: cloud packet wireshark)

« Previous Entries

About

Andrew Hay is a Canadian security professional, author, and speaker living in Lethbridge, Alberta, Canada. For more information please see the About page.

Subscribe in a reader

Author of…

Recent Posts

Google Friend Connect