xianshield

Chris Fry and I will do a live webcast entitled, "6 Ways to Improve Your Security Monitoring" on July 15th via WebEx. Read More...

The book is: Security Monitoring: Proven Methods for Incident Detection on Enterprise Networks. Here are the links:

Official Page
Amazon

Presentation for FIRST 2009 in Kyoto Japan Read More...

Presentation on how to prevent gaps in your security monitoring infrastructure, presented at Triangle InfoSecCon and hopefully at FIRST 2009 in Kyoto, Japan. Read More...

Presentation on how to setup your security monitoring systems, presented at FIRST and Networkers. Read More...

I delivered a new talk on "taming media and messaging" that addresses how parents can filter media for their families. It addresses things like Internet content filtering, Facebook, Myspace, and the V-Chip You can find 2 forms of the presentation on the Presentations page. You'll find a slidecast at the church web site. Read More...

I'm pleased to say there have been some good reviews of SQL Injection Defenses. Gregory Wilson reviewed it as part of his Short Cuts review for Dr. Dobb's Journal: Short Cuts. Robert Atkinson has reviewed it on the PHP London site: Book Review - SQL Injection Defences. I like how Robert Atkinson changed "defenses" to "defences". :-) Read More...

Will be speaking again this year on security monitoring at Cisco Networkers. Alas, Chris Fry will be covering this year's FIRST conference, so I'll have to fly solo. Read More...

Chris Fry and I have begun a new work for O'Reilly Media. Our working title has changed many times, but my current favorite is, "Enterprise Security Monitoring Made Practical". It is based on our "Inside the Perimeter: 6 Steps to Improve Your Security Monitoring" talks at Cisco Networkers and FIRST. Read More...

Thanks to John Kristoff for his feedback, I've updated the guide to better notify the webmaster when the Apache server restarts, without the convoluted "copy to /tmp" first. Read More...