Passive network analysis can reveal OS, service, and even vulnerabilities--just by sniffing the network.

Pen testers must get beyond just breaking in and clients need to understand how the tester's results map to business risk

Companies like to set up Internet kiosks for customers and job applicants, but their convenience can be their undoing

Baselines can be extremely valuable in knowing what's going on within your network, but they can't help if they're not created. Start with the basics and adapt to meet your needs.

DerbyCon's successful first year reminds us of what the security community is all about: sharing and learning from others, promoting new ideas, and advancing the art of security.

Italian researcher releases 0-day SCADA exploits leaving companies vulnerable to exploit. Community-based IDS signature project releases update to help detect attacks.

New Metasploit modules released during the Vegas security cons add cool new features like covert forensics and PXE boot pwnage.

Awareness campaign at DEFCON shows how easy data can be stolen from smartphones using free charging kiosks.

New research on medical device security is shining light on potentially deadly vulnerabilities.

Rewrite of WarVOX brings new features, better audio fingerprinting, and a Ruby VoIP stack that's been integrated into Metasploit.

Upcoming Metasploit Framework vSploit modules can help to identify security blindspots.

WAFs can provide a good layer of defense against attacks, but can't solve all web app sec problems as vendors would like you to think.

The biggest hurdle SMBs face with logging is actually starting. Even the most rudimentary setup can provide immeasurable value when faced with a breach.

Free, open source tools like the Metasploit Framework and w3af exemplify the power of community involvement and support.

Two new wireless security projects discussed at ShmooCon focus on bringing low-cost hardware to security researchers

Panel of security professionals discussed new tools and techniques to accelerate password cracking, highlighting need for multi-factor authentication

Exploit for SCADA software emphasizes need for organizations to review their network design, device exposure before they become a victim.

Simple statistical analysis of Web proxy logs provides wealth of information & incidents sometimes by AV.

Snorby is a new free, open-source analysis front-end to the popular Snort IDS that is fast and usable.

Few security products I've used over the years are ones I would run on a Windows system on a daily basis. Of course, that would require me to run Windows on a daily basis, but if I did and I used it for daily activities like Web browsing, e-mail, etc., I wouldn't do so without the Microsoft Mitigation Experience Toolkit (EMET).

Monitoring for security incidents can be tough. It's tougher when you don't know what to look for. Now imagine trying to investigate an incident when you don't have any logs to analyze.

As security professionals, it is easy to get focused only on the technical side of security and forget about the importance of physical security.

Search engines are great, powerful tools. They can help find an answer when you've tried everything you can think of. They can also help find information about a company you may be performing a penetration test on.

USB devices have many benign, legitimate uses. But put a USB-based device in the hands of a savvy hardware hacker, and that USB device can go from good to evil in no time.

It takes a lot of time and effort to stay up on the latest vulnerabilities, attacks, and tools. Often, we in the security field rely on tools to automate parts of a vulnerability assessment or penetration test, but our testing should never rely only on the tools. If all we ran were some tools and blindly trusted their output,then we would be no better than your average script kiddie.