Infosec Reading List - September 2018
On a monthly basis I will publish my reading recommendations which mainly focus on Information Security (InfoSec) and Outdoor Sports. All InfoSec Reading Lists can be found here. Text in italic represent quotes from the original article.
Quotes from the Twitterverse
InfoSec
- Attacking Wireshark - isolation is the key, then you can even let it run as root - [link]
- Why I’m done with Chrome - outcome of the forced login policy for Chrome - [link]
- Was the Efail disclosure horribly screwed up? - You need to simultaneously (a) make sure every vendor has as much advance notice as possible, so they can patch their software. But at the same time (b) you need to avoid telling literally anyone, because nothing on the Internet stays secret - this pretty much hits the nail if you ask me - [link]
- Machine Learning Confronts the Elephant in the Room - [link]
- The Effectiveness of Publicly Shaming Bad Security - on the topic of “constructive” shaming, in case something like this even exists - [link]
- LM, NTLM, Net-NTLMv2, oh my! A Pentester’s Guide to Windows Hashes - [link]
- Between You, Me, and Google: Problems With Gmail’s “Confidential Mode” - [link]
- No, Panera Bread Doesn’t Take Security Seriously - [link]
- Google’s top fraud fighter explains why it’s risky to brag about owning bitcoin - [link]
Outdoor
This post is licensed under
CC BY 4.0
by the author.