What is the product?

Best Practice and security Monkeys

This video was inspired by the old five monkeys in a cage experiment. Unfortunately, you can often observe security professionals and especially auditors exhibit such behaviour. They are ‘taught’ at one stage of their life that something is secure and the way to do it. Often referred to as ‘best practice’. The problem with … Continue reading Best Practice and security Monkeys →

Plagiarism is bad… oh look a new song to download!

I’m confused... A lot of you would say that you already know that and may well add a few more adjectives to describe me. Recently, it has come to light that work published by corelan.be had been plagiarized in course material used by http://www.infosecinstitute.com/. You can read up on the full details either at corelan.be … Continue reading Plagiarism is bad… oh look a new song to download! →

Infosec & Drugs

This weeks video was a bit of a bodged job. I was away for the weekend and had no internet connection good enough to upload it on time. Plus I was woefully ill equipped to film in windy conditions resulting in most of the video consisting of my lips moving to the sound of … Continue reading Infosec & Drugs →

Avoiding Security Budget Cuts

In challenging times companies are cutting back on information security departments budgets. I have, however, come up with an ingenious plan by which security departments can still keep their funding without costing the company any money whatsoever. I’m pretty sure no-one has come up with this idea ever before. There’s always a risk when coming … Continue reading Avoiding Security Budget Cuts →

Why does information get lost?

Security Vs Compliance

Taken from the ever popular Security Vs Compliance Video, is a poster that sums it up so you can share with colleagues who work in companies that ban YouTube, or to use in presentations. Because we know nothing spices up a boring powerpoint presentation than a badly edited photo. Hey it’s better than … Continue reading Security Vs Compliance →

CISSP MOFO

As immortalized in the infamous video, the poster you’ve all been waiting for. Use as your desktop background, print out onto your T-Shirts, mugs or mouse mats. Or better still, just email to non-CISSP’s just to reinforce who the boss is. Compatible with most recruitment agencies, just email along in place of a covering letter. … Continue reading CISSP MOFO →

Size Isn’t Everything

I’ve often been criticized for skimming over issues at a high level, or not explaining some of the technical nuances of security in greater depth. For those who know me, or have read any of my articles or watched any of my videos for any period of time, you may note that I do try … Continue reading Size Isn’t Everything →

The Great Infosec Cop-Out?

When someone starts a sentence by saying, “I don’t mean to offend but....” you know that they’re going to say something offensive. So you put your guard up. That’s got no relevance to what I’m about to say, because I’ve not got a fully formed opinion that I wish to share. Rather it’s more of … Continue reading The Great Infosec Cop-Out? →