Author: Christian Wojner
Date: November 30th 2011
Summary: A paper about how Microsoft's WOW64 technology unintentionally fools IT-Security analysts.
Source: http://cert.at/downloads/papers/wow_effect_en.html
Wednesday, November 30, 2011
Friday, September 1, 2006
Establishing a Practical Routine for Reviewing Security Logs
Author: Lenny Zeltser
Date: September 2006
Summary: The term security information management (SIM) refers to the discipline of collecting and analyzing security events to detect or investigate malicious activities. Essential to this process are the individuals who review the gathered data and decide whether the events constitute an incident and should be escalated. Information security logs that are not regularly reviewed are hardly useful and can be a liability to an organization.
Source: http://zeltser.com/log-management/
Note: Originally published in September 2006 at SearchSecurity.com
Date: September 2006
Summary: The term security information management (SIM) refers to the discipline of collecting and analyzing security events to detect or investigate malicious activities. Essential to this process are the individuals who review the gathered data and decide whether the events constitute an incident and should be escalated. Information security logs that are not regularly reviewed are hardly useful and can be a liability to an organization.
Source: http://zeltser.com/log-management/
Note: Originally published in September 2006 at SearchSecurity.com
Subscribe to:
Posts (Atom)