Looking East and West
Charles Herring
6 June 2013
NetFlow can provide an efficient way of monitoring traffic moving laterally across a network.
APT Number One
Charles Herring
21 February 2013
The systematic problems the Mandiant APT1 report revealed in enterprise surveillance efforts.
Before There Was a Great Wall
Charles Herring
23 January 2013
How the importance of physical surveillance throughout human history teaches us why we are failing at network security and how we can fix it.
Anatomy of an SQL Injection
Charles Herring
19 November 2012
What SQL Injection is and how intelligent monitoring of NetFlow can detect and deter it.
Are My Computers for Rent?
Charles Herring
7 November 2012
Using NetFlow to determine if network resources are being sold on the black market.
Day Zero Is How Long??!
Charles Herring
18 October 2012
We are taking a retarded amount of time to discover unknown (zero day) threats and how we can reduce that window.
Network Security School of Fort Knox: Part 6
Charles Herring
14 September 2012
The last installment explains the importance of knowing what to do when a breach is detected.
Network Security School of Fort Knox: Part 3
Charles Herring
28 August 2012
Not all types of cyber attacks are the same. In this third installment we look at different exploit types and their delivered payloads.
