My Writing

• Social Networking Twitter Social Networking Among Information Security People
  Twitter offers three-fold value for security professionals: discovering curated content (users act as content curators), interacting with peers (social stigmas almost non-existent), and researching...
• Leadership 9 Convenient Lies in Cybersecurity
  Familiar security claims like "we use AES-256" or "we're SOC 2 compliant" are technically true. Each one omits conditions that determine risk, and we need to communicate them carefully to avoid...
• Malware 5 Events in 2011 That Challenged Online Security and Trust Assumptions
• Tools Design Information Security With Failure in Mind
  Security controls will eventually fail despite best intentions—design architecture to detect suspicious activities early and limit incident scope when breaches occur. Like boats engineered to stay...
• Tools Process Hacker as an Alternative to Process Explorer and Task Manager
  Process Hacker is an open source replacement for Task Manager and Process Explorer. It displays processes in a tree, color-codes debugged, service, and packed processes, shows network connections...
• Malware Using Netsh for Easier Network Setup in a Malware Lab
  Windows' netsh tool can save and restore network configurations, useful for malware analysis labs that frequently switch between isolated segments and Internet-connected networks. Save configurations...