Leveraging Open Source for Business Intel

March 2, 2010 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

Open source intelligence (OSINT) is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence…

Cloud Computing Challenges Infrastructure

November 29, 2009 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

Cloud Computing is becoming more and more the buzzword of every conference, meeting and article. Yet it is still in it’s inception, and there are multitude of issues and problems. Here are the mechanisms by which we can approach the level of trust that we have in our infrastructure for the cloud.

Windows Security Logs and MS Log Parser

November 19, 2009 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

Reading through a Windows security log or any other log can be very difficult and time consuming, so a lot of companies have created their own tools to analyze windows event logs. But before you start going commercial, there is a tool that will get you going without any cost. Against all odds, it’s a tool made by Microsoft!

Microsoft Threat Assessment & Modeling

November 11, 2009 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

Every organization has some form of Information Security Risk Assessment - some perform a formal risk assessment, others simply use their practical experience. There aren’t that many tools that assist the organization in performing risk assessment. The most widely used one is Excel, but it is far from a good choice.

Two Vulnerability Scanning Tools Evaluated

November 3, 2009 by ADMIN · 2 Comments

By Bozidar Spirovski, CISSP, MCSA, MCP

In terms of speed, Retina performed much faster. In terms of scan depth, Nessus has a small advantage, since it includes a web mirroring tool that is very helpful in HTTP. In a direct comparison, Nessus wins simply because Retina manifested erroneous results on repeat scans.

Tools for Detecting Spoofed Email Headers

July 20, 2009 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

In the age where a huge percentage of all attacks are done through e-mail, very few of us know how to analyze where this e-mail was sent from. This analysis must go beyond the sender e-mail displayed in your e-mail client (which are easily spoofed). Here is a simple tutorial on analyzing Internet headers.

Conducting Dbase Corruption Investigations

July 15, 2009 by ADMIN · Leave a Comment

By Bozidar Spirovski, CISSP, MCSA, MCP

Analyzing an incident when the manufacturer claims that it’s an operator error and the operator claims that it is an application error is one of the most daunting tasks of a security officer. And this is a type of incident that the security officer will be called upon to investigate simply because the management needs an independent observer and has doubts both in the operator as well as the manufacturer. Here is what to do when thrown into the fire…

A Computer Forensics Process Tutorial

July 5, 2009 by ADMIN · 2 Comments

By Bozidar Spirovski, CISSP, MCSA, MCP

In reality, the computer forensics job is a standard process and every one of us does parts of the process when we debug our computers. Here is a simple tutorial on what is involved in performing more thorough computer forensics.