Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] CyTRAP Labs - Urs+Nahum's Security Checklist

from [blah] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] CyTRAP Labs - Urs+Nahum's Security Checklist
Date: Tue, 29 May 2007 14:53:17 -0700 
I tried the link you listed, but it didn't work (no surprise there since
it's "not released"), but it looks like the document's available at:
http://www.cytrap.eu/files/ReguStand/2007/pdf/Urs%2BNahumChecklist-2007-05-29.pdf

so i guess it is released.  who wants to wait til tomorrow?



On 5/28/07, CyTRAP Labs - advisory <Report_exploit@cytrap.eu> wrote: 



Dear Colleagues,

I thought this might be of interest....regulators have done their best to
improve legislation to help organizations to better protect their
information systems.

Unfortunately and as a result of this, organizations have been buried in
an
avalanche of conflicting requirements that are difficult to keep track
off.  They are expected to demonstrate an acceptable standard of due care
in managing their computing infrastructures and the information that
networks and systems create, transmit, and store. Moreover, they have to
show that all this helps reduce the risk against having their systems
misused for criminal activities.

Hence, we thought we write Urs+Nahum's Security Checklist. It provides
well
structured information that enables high-level reporting, thus empowering
executive and technical leaders with a greater ability to make informed
decisions. It prioritizes numerous requirements that managers need,
guiding
them through the process that improves corporate risk management and
information security while helping improve confidentiality of data and
citizens' privacy.

You can get a short summary here:

- short summary about Urs+Nahum's Security Checklist  - press release --
http://info.cytrap.eu/?page_id=64

- an advanced copy of  Urs+Nahum's Security Checklist  pdf 350 KB for
download -  http://regustand.cytrap.eu/?p=1  (PS. it is complementary and
free for everybody, of course)

Urs+Nahum's Security Checklist will be released May 30, 2007.  We hope
that
it will be useful to you all.... in your daily work. Please let us know
what you think about this work, if you can spare the time, of course.

Enjoy your long weekend.


Cordially

Urs E. Gattiker
       CyTRAP Labs
       Roentgenstrasse 49
       8005 Zurich
       Switzerland
       +41 (0)44 272 - 1876
       +41 (0)76 200 - 7778 (mobile)
       email: Urs+Nahum-Checklist at CyTRAP.eu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] alexa.com XSS, kefka
Next by Date:  Re: [Full-disclosure] alexa.com XSS, cardoso
Previous by Thread:  [Full-disclosure] CyTRAP Labs - Urs+Nahum's Security Checklist, CyTRAP Labs - advisory
Next by Thread:  [Full-disclosure] CyTRAP Labs - Urs+Nahum's Security Checklist, CyTRAP Labs - advisory
Indexes:  [Date] [Thread] [Top] [All Lists]