Look Away From the Monitor; You’re Under Attack by Low-tech and No-tech Hackers.
By Eric Lahoda
Reliance on highly technical defensive technology can lead to a false sense of security. A typical IT security department focuses most its attention on complex high-technology threats. This attention becomes a distraction from other significant low-tech or no-tech threats. We need to lift our head away from the monitor to recognize what is happening in the real world. Low-tech or no-tech hacking takes advantage of human vulnerabilities and human mistakes, but there is a defense. Through leadership and guidance of everyone in your organization, you can reduce these low-tech and no-tech hack threats.
2. Wireless Assessment Using BT 5 R2
By George Lewis
Wireless Networks have become everywhere in our world. Many people use them worldwide every day at their homes, offices, and public hotspots to log on to the Internet and do both personal and work. Although wireless makes life so easy and gives us unlimited mobility, it comes with its risks and threats.
3. You are Here, A Guide to Network Scanning
By Court Graham
Historically the term network scanning has been defined as a process which primarily takes place shortly after the information gathering phase of a hacking attempt or penetration test. In actuality, you never know when you will have to perform scanning activities. The order is dependent on the method or if you have already compromised a system or not. If you have been returned a shell resulting from a successful malware exploit; information gathering of systems on the compromised network would be soon to follow; a definite departure from the familiar Phases of Reconnaissance, Scanning, Exploiting, Keeping Access, and Covering Tracks. The fact that scanning can take place out of order depending on the type of exploit, and target location, is why I’ve titled this article “You are here” what to do where; network scanning.
4. Scan with Mind!
By Raheel Ahmad
This article itself is a story how I started writing it and I didn’t let you guys know the background. Passionate & Patient is the key to finding any issues in the target and these things come with experience. In the present world of hacking every new born is trying to be a hacker, what is somehow possible due to the availability of hacking tools such as MSF and Scanning tools – Vulnerability Scanners.
5. CISSP – A Challenge Accepted!
By Manish Upasani
CISSP, most arguably a very prestigious, most sought and widely accepted certification in the Information Security industry. Lot of people get scared with the amount of knowledge one needs to acquire to earn the credentials. It is certainly very big when you look at those 10 domains. One can be very good at a few of them but not all and that is the key to get certified. In addition to this, the exam expects you to have stamina and mental resilience to stay focused for six hours to complete 250 questions. Information security professionals feel like they are preparing for a marathon while preparing for the exam.
6. An Expert’s Tips For Cracking Tough CISSP Exam
By Rahul Kokcha
What you will learn…
History of CISSP certification
Importance of CISSP certification
The CISSP exam pattern
What material you should use to prepare for exam
What are important topics for the exam
What is never asked in the exam
My personal experience
Some sample questions
7. CISSP at a Glance – the IT&C Hardcore Certification
By Cristina Vintila
A friend once told me that, just as every musician strives to get a Grammy Award, the techie is ever eager to get the best certification on their virtual wall. For many of us, techies, CISSP is one of the most renowned certifications out there, the Grammy Award for a career in IT&C Security. In fact, should you google for “top security certifications”, you’ll have a 100% chance of top results listing the CISSP.
8. The(ISC)² Certified Information Systems Security Professional (CISSP) Certification: What Is It All About?
By Paul Volosen
The (ISC)² Certified Information Systems Security Professional (“CISSP”) certification has gained increasing popularity with information security professionals. Although not without debate, the certification is held by over 80,000 worldwide and applying for the CISSP requires candidates to have at least five years of “relevant experience” in two or more of ten domains. The CISSP is often sought out for its perceived career value and preparing for the certification exam usually requires considerable time and effort.
9. CISSP: To Certify Or Not?
By Simphiwe Mayisela
Certified Information System Security Professional
Everyone in the information security industry is familiar with the comment from the International Information Systems Security Certification Consortium ((ISC)² that; “CISSP certification offers many advancement opportunities for information security professionals in their careers. “ What does this mean for you as an industry professional and why should you be interested in obtaining this qualification? Hopefully by the end of this article we will answer your questions and provide valuable input in how to approach and prepare studies on the journey towards CISSP certification.
10. How To Achieve The Milestone: CISSP
By Swati Sharma
CISSP (Certified Information Systems Security Professional), one of the widely accepted and toughest certifications in the Information Security field and the highest ranked certification too.
This article is relevant for all who are planning to write the CISSP exam or are not able to decide whether they should write this exam or not. This article will help them to give a high level of understanding of the CISSP exam requirements, planning and preparation for CISSP.
11. CISSP, Certiﬁed Information Systems Security Professional
By Oren Ben Shalom
The CISSP Certification offered by the International Information Systems Security Certification Consortium (ISC)², enables you to be a part of the international community of information security. This certification is highly prestigious in the world of information security, and ensures that the graduate has the knowledge of the ten domains of information security and the ability to work within them.
12. The Evolving Threat Landscape: Is it Time for Paradigm Shift in the Enterprise Security Model?
By Eugene Tyrrell
What the reader will learn.
The reader will come to understand a sophisticated class of threats that are plaguing many industries worldwide and an improved security model, supported by a paradigm shift, that will help organizations keep pace and better defend against these nefarious threats.