Collaborate Disseminate
As you know, using machine learning we can detect malware.
We can use dynamic analysis based on WinAPI function calls and their arguments.
But what about static analysis using machine learning? In this case, we can parse Portable Executabl… Continue reading Static malware analysis using machine learning
We use the STRIDE Threat model in our company to figure out software flaws. Now we need to asses a Process. This Process (or workflow) is not only composed of software. It has human interaction, machine interaction and so on (it’s complex)… Continue reading Threat modeling on a process/workflow
I know STRIDE (from Microsoft) stands for Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, and Elevation of privilege.
How did Loren Kohnfelder and Prakrit Garg deduce these six threats (neither five nor seven t… Continue reading Why does threat model STRIDE only have six threat categories?
Adam Shostack, the author of “Threat Modeling: Designing for Security”, and the co-author of “The New School of Information Security”, recently launched his new book – “Threats: What Every Engineer Should Learn From Star Wars”. In this Help Net S… Continue reading Introducing the book – Threats: What Every Engineer Should Learn From Star Wars
I recently stayed at a hotel where outbound SSH traffic (and seemingly only SSH traffic) was blocked on the guest WiFi network, and I’m trying to figure out what security-based rationale they might have had for this policy. Unfortunately, … Continue reading What would be the security rationale for a hotel blocking only SSH traffic?
The importance of software threat modeling continues to grow. NIST advises software engineers to adhere to secure software development best practices and do software threat modeling repeatedly during the development process, especially when creating ne… Continue reading What is software threat modeling and how to use it effectively
What are potential security implications of using older unsupported motherboards/laptops that do not get BIOS(UEFI) updates anymore, but run an up to date GNU/Linux distribution?
Do measures like using secure boot or setting up a BIOS pass… Continue reading What are the security implications of using an old computer with no more BIOS updates?
I am creating a react native mobile application using Expo. This app simply renders information – there is no data collection or entry, no user accounts, no database (other than JSON storage). There is not a single input box in the entire … Continue reading Static react native app security issues
Is lateral movement and horizontal privilege escalation the same thing, what would be the key difference to these two ?
Continue reading Is lateral movement and horizontal privilege escalation the same thing?
I am woking on a project where I need to build a blueprint security model for a proxy that should mediate and handle communication between two computers. Because this is a first for me, I don’t have a lot information about "security m… Continue reading How do you build a good security model for a proxy?