Geek(Wisdom).com

The Institute for Security and Open Methodologies (ISECOM) is an open-source collaborative community since January 2001 with non-profit status in the USA and Spain. We are dedicated to providing practical security awareness, research, certification and business integrity. ISECOM provides certification, training support, and project support services for non-partisan and vendor-neutral funding of our projects and infrastructure and to assure you our training programs, standards, and best practices are truly neutral of national or commercial influence.

Correlating system events can be a challenge, doing it in an automated fashion is no less a challenge. While tools like logcheck and swatch are helpful they do not correlate events, they simply highlight individual log messages as potential events. SEC (simple event correlator) is a powerful and flexible solution for correlating log messages into events and performing certain actions when an event has occurred.

This guide covers classification of information, handling of classified information as well as information about understanding threats. It also provides a nice description of the concept of "need-to-know" and how it relates to information access privileges.

Have you ever wanted to test the strength of your password generating capabilities? Try the Password Strength Meter SecurityStats.com

Broadly, port knocking describes communication in which information arrives encoded in the form of connection attempts to closed ports, in which the port sequence forms the encoding, and acts as an event trigger on the receiver's end. The receiver does not return a receipt to the sender during this transaction.

The NSA provides access to public configurtion guides for securing common applications and operating systems.