Please upgrade your browser to make full use of twiends.   chrome   firefox   ie   safari  
Want your own social home page like this one? Click here.
 
Charles Herring
If you have to be delayed in getting to #infotec14, you might as well enjoy it. #TheWire #GooseIsland #UnitedClub pic.twitter.com/wMSfOKwXBq
Announcement of my #InfoTec talk next week in Omaha. lancope.com/blog/aim-infot…
Another (5th this year) delayed early AM flight with @united because of late aircrew. I think they need to expense some alarm clocks!
What to do when loyal administrators become traitors (or revolutionaries) f15hb0wn.com/blog/dealing-i…
Were you breached over Christmas? Apply IOC retroactively to #NetFlow to check: f15hb0wn.com/blog/processin…
Windows XP are out of style and out of support to everyone but attackers. How to keep 0days off yours: f15hb0wn.com/blog/protectin….
"We do APT Detection..." - Every #InfoSec vendor. How to figure out what they can actually do: f15hb0wn.com/blog/parsing-v…
Are you aware of how many different cloud services are being utilized in your org? Figure it out via #NetFlow: f15hb0wn.com/blog/reigning-…
Do you have data that you would like to keep off of pastebin or Warez sites? Here is an approach using #NetFlow. f15hb0wn.com/blog/monitorin…
"I want a single pane of #InfoSec glass..." - Every CISO. I explain why it is still a pipe dream: f15hb0wn.com/blog/ciso-holy…
M&A are painful, sucky experiences for the IT staff. Here are some pointers on how to make it easier with #NetFlow. f15hb0wn.com/blog/network-v…
Getting ready to eval #InfoSec tools that use #NetFlow? Here are some pointers from yours truly: f15hb0wn.com/blog/evaluatin…
How to use #NetFlow and AAA data to monitor users for troubling behavior: f15hb0wn.com/blog/user-cent…
What's worse than TCP DDoS? You guessed it: App layer DDoS. Here is what to look for in #NetFlow. f15hb0wn.com/blog/applicati…
Is your Firewall and NAC doing what you think it is? Probably not. Here is how to check. f15hb0wn.com/blog/when-enfo…
Are you just watching ingress/egress? Rookie. You have to look laterally: f15hb0wn.com/blog/looking-e…
" Understanding the challenges of assessing and responding to security incident alerts: j.mp/1j9bvPw by @charlesherring"
Retweeted by Charles Herring
We are getting close to #BsidesChicago. If you missed my talk last year, catch up here: f15hb0wn.com/blog/bsides-ch…
Understanding the challenges of assessing and responding to security incident alerts: j.mp/1j9bvPw by @charlesherring
Retweeted by Charles Herring
What do you think "APT" means? Here are my thoughts (and angst): f15hb0wn.com/blog/why-i-don….
PCAP may be making you slow. Here are some pointers on maximizing #NetFlow and #PCAP. f15hb0wn.com/blog/step-away…
Fear that your security tools are 'crying wolf'...then read this blog by @charlesherring (@charlesherring) lnkd.in/d6ReRkP
Retweeted by Charles Herring
How do you buy #InfoSec tools? Do you fall for the pitfall of an analyst shopping list? Here's how not to: f15hb0wn.com/blog/you-say-s…
Man, I get tired of middle managers telling me they can't afford a SOC and IRT. Pls join us in 2014. It's not 2005! f15hb0wn.com/blog/time-hire…