Blogspot - taosecurity.blogspot.com - TaoSecurity
General Information:
Latest News:
Feedback from Network Security Monitoring 101 Classes 14 Aug 2013 | 06:07 am
At Black Hat in Las Vegas I taught two Network Security Monitoring 101 (NSM101) classes. This is a new class that I developed this year, after retiring the third edition of my TCP/IP Weapons School. O...
President Obama Is Right On US-China Hacking 19 Jun 2013 | 06:18 am
I strongly recommend watching the excerpt on the Charlie Rose show titled Obama: Blunt Conversation With China on Hacking. I reproduced the relevant part of the transcript below and added emphasis to ...
Pre-Order The Practice of Network Security Monitoring Before Price Hike 14 Jun 2013 | 05:24 am
When my publisher and I planned and priced my new book The Practice of Network Security Monitoring, we assumed the book would be about 250 pages. As we conclude the copyediting process and put print i...
Practice of Network Security Monitoring Table of Contents 30 Apr 2013 | 03:40 am
Since many of you have asked, I wanted to provide an updated Table of Contents for my upcoming book, The Practice of Network Security Monitoring. The TOC has only solidified in the last day or so. I d...
Bejtlich Teaching New Class at Black Hat in July 21 Apr 2013 | 07:57 pm
I'm pleased to announce I will teach two sessions of a brand-new two day class at Black Hat USA 2013 this summer. The new class is Network Security Monitoring 101. From the overview: Is your network ...
Mandiant APT1 Report: 25 Best Commentaries of the Last 12 Days 3 Mar 2013 | 07:07 am
Two weeks ago today our team at Mandiant was feverishly preparing the release of our APT1 report. In the twelve days that followed publication on the evening of Monday the 18th, I've been very please...
Recovering from Suricata Gone Wild 24 Feb 2013 | 09:43 pm
Recently I tried interacting with one of my lab Security Onion sensors running the Suricata IDS. I found the Sguil server was taking a really long time to offer services on port 7734 TCP. Since I hadn...
Using Bro to Log SSL Certificates 23 Feb 2013 | 07:21 am
I remember using an older version of Bro to log SSL certificates extracted from the wire. The version shipped with Security Onion is new and that functionality doesn't appear to be enabled by default....
Practical Network Security Monitoring Book on Schedule 12 Feb 2013 | 08:27 am
First the good news: my new book Practical Network Security Monitoring is on track, and you can pre-order with a 30% discount using code NSM101. I'm about 1/3 of the way through writing the book. Sin...
On Thought Leadership and Non-Technical Relevance 26 Jan 2013 | 09:03 pm
A reader left a comment on my post 2012: The Year I Changed What I Read. He said: Richard, it's interesting to note that your career has shifted from "pure" technology to more of a thought leadership...