Tuesday, July 21, 2009

myinfo sources

These are the sites I check out frequently. It's a ton, so I'm moving more to pulling all of these that have rss into google reader. But the original sites are always a richer experience anyway, so listing them here. Bill Blunden has a great listing at belowgotham, organized by subject. I'll get around to doing that here. For now though.....

Risk
http://www.NIST.org/news.php
http://www.riskinfo.com/

Security

site
http://blogs.vmware.com/security/ ( VMware )
http://carnal0wnage.attackresearch.com/ ( Chris Gates )
http://lists.immunitysec.com/pipermail/dailydave/ ( "Daily Dave" by Dave Aitel )
http://datalossdb.org/
http://episteme.ca/ ( Mike Murray )
http://feeds.feedburner.com/techtarget/Searchsecurity/SecurityWire
http://googleonlinesecurity.blogspot.com/
http://ha.ckers.org/blog/ ( Robert 'rsnake' Hanson blog )
http://isc.sans.org/
http://metasploit.com/home/
http://packetstormsecurity.org/ ( propecia tool is here )
http://searchsecurity.techtarget.com
http://secunia.com/advisories/historic/
http://skeptikal.org/index.php ( mckt blog )
http://t-rob.net/wmq/ T.Robert Wyatt's MQ-Security Blog
http://taosecurity.blogspot.com/ (Richard Bejtlich )
http://thedigitalstandard.blogspot.com/ Chris Pogue ( co-Author w/Harlan Carvey )
http://vrt-sourcefire.blogspot.com/
http://windowsir.blogspot.com/ Windows Forensics
http://www.2600.com/
http://www.attackresearch.com/ (ValSmith )
http://www.cisco.com/en/US/products/products_security_advisories_listing.html
http://www.darknet.org.uk/
http://www.doxpara.com/ ( kaminsky's site )
http://www.exoticliability.com/
http://www.grc.com/securitynow.htm
http://www.matasano.com/log/
http://www.microsoft.com/technet/security/default.mspx
http://www.pauldotcom.com/ ( Paul Asadoorian )
http://www.rationalsurvivability.com/blog/ ( Chris Hoff's rants on Security. Good focus on Cloud Security, Virtualisation Security )
http://www.schneier.com/blog/
http://www.securityfocus.com/vulnerabilities
http://securitymetrics.org/
http://appsecstreetfighter.com/ ( SANS )
http://www.us-cert.gov/cas/alerts/
http://www.us-cert.gov/cas/techalerts/index.html
http://www.vmware.com/resources/techresources/cat/91,98 ( VMware Security White papers )
http://www.WindowSecurity.com/
http://news.zdnet.com/ ...Especially the ZeroDay Blog

Security Metrics

http://www.securitymetrics.org/content/Wiki.jsp ( SecurityMetrics.org)
https://www.metricscenter.net/ ( MetricsCenter.net )
https://www.metricscenter.net/index.php/mc-catalog.html ( Public Catalogue )
http://www.sans.org/.../a_guide_to_security_metrics_55 ( SANS Metrics paper )


Posted by at
Labels: , ,

1 comment:

  1. 3dkSeptember 20, 2021 at 12:31 PM

    Apologies that the post is over 10 years old. I'll have to revisit and update. Glad you found it somewhat useful as-is.

    ReplyDelete

Subscribe to: Post Comments (Atom)

Noteable stories from favorite RSS feeds.