Infosec Writers Latest Security Papers

Infosec Writers Latest Security Papers http://www.infosecwriters.com/ Papers submitted by security professionals are published on the site and archived for readers. Categories include cryptography, E-mail security, exploitation, firewalls, forensics, honeypots, IDS, malware & wireless security. http://blogs.law.harvard.edu/tech/rss en-us staticreply@yahoo.com reso@infosecwriters.com Tue, 09 Feb 2010 00:00:14 EST The Phishing Guide http://www.infosecwriters.com/texts.php?op=display&id=228 Hal Walter A comprehensive paper on a newer information security threat known as Phishing. Mon, 01 Feb 2010 00:00:00 EST Shedding Light on Quantum Cryptography http://www.infosecwriters.com/texts.php?op=display&id=648 Curby Simerson Curby Simerson submits this paper on the introduction to Quantum Cryptography. Fri, 14 Aug 2009 00:00:00 EDT Securing a Virtual Environment http://www.infosecwriters.com/texts.php?op=display&id=647 Brian Fowler In this paper, written by Brian Fowler, we will take a look at exactly what virtualization is, as it is applies to servers and desktops. Through this we will learn of the various problem and vulnerabilities that virtualization will cause. Wed, 22 Apr 2009 00:00:00 EDT Investigating the SANS/CWE Top 25 Most Dangerous Programming Errors List http://www.infosecwriters.com/texts.php?op=display&id=646 Fred W. Williams Jr. Fred Williams submits this paper on 25 of the most dangerous programming erros and will provide education to software developers, testers and project management that will lead to more secure software for the most sensitive customer facing web applications. Tue, 21 Apr 2009 00:00:00 EDT Hacking Tools & Techniques and How to Protect Your Network from Them http://www.infosecwriters.com/texts.php?op=display&id=645 Aaron Sigmon Aaron Sigmon submits his research paper on Hacking Tools & Techniques and How to Protect Your Network from Them. Mon, 20 Apr 2009 00:00:00 EDT Computer Forensics: Breaking Down the 1’s and 0’s of Cyber Activity for Potential Evidence http://www.infosecwriters.com/texts.php?op=display&id=644 Joseph Coward Joseph Coward submits this research paper on Computer Forensics and the the importance it now has in a digital world. It highlights how to identify, collect and perserve digital evidence. Fri, 17 Apr 2009 00:00:00 EDT Steps Involved in Exploiting a Buffer Overflow Vulnerability using a SEH Handler http://www.infosecwriters.com/texts.php?op=display&id=643 Ronnie Johndas Ronnie Johndas submits this paper on finding and exploiting a buffer overflow in an activex application. Fri, 10 Apr 2009 00:00:00 EDT Exploring Below the Surface of the GIFAR Iceberg http://www.infosecwriters.com/texts.php?op=display&id=642 Ron Brandis Ron Brandis presents his research and findings on GIFAR. Wed, 08 Apr 2009 00:00:00 EDT Anatomy of an XSS Attack http://www.infosecwriters.com/texts.php?op=display&id=641 Russ McRee This submission by Russ McRee is a first-person narrative, written from the perspective of an attacker utilizing crosssite scripting (XSS) methodology combined with phishing. Tue, 06 Jan 2009 00:00:00 EST Failed: Information Security and Data Protection in a Consumer Digital World http://www.infosecwriters.com/texts.php?op=display&id=640 Rafal Los This paper, written by Rafal Los, focuses on the 5 main reasons why information security departments have failed, and will continue to fail to deliver the promise of 'being secure'. Mon, 15 Dec 2008 00:00:00 EST