Welcome back. In the last few articles we discussed how to set up an evaluation that’s both defensible &...
Archive for category: Los
Article archive for Rafal Los on The Ethical Hacker Network (EH-Net), Free Online Magazine and Community for Security Professionals.
Rafal Los serves as the VP of Solution Strategy at Armor. He’s responsible for leading the various technical functions associated with designing, developing and delivering next-generation cloud security-as-a-service solutions to our clients. Rafal is also the Founder & Producer of the Down the Security Rabbithole Podcast. He previously worked as the Managing Director, Solution & Program Insight at Optiv Inc.; Principal, Strategy Security Services at HP Enterprise Security Services; and Senior Security Strategist at HP Software.
As an IT security professional, Rafal gained experience in some of the world’s most challenging business environments. His responsibilities included budgets, risk analysis, process creating and adoption, internal audit and compliance strategies. His professional experience has taken him from budding “.com” companies, to a security boutique shop, to one of the world’s largest and most complex enterprises – always meeting challenges head-on and with a positive attitude. He has been the catalyst for change in many organizations, building bridges across enterprises and developing permanent successful strategies for growth and prosperity.
If you’ve read along so far, we’ve summarized the process of evaluating and choosing something new. We then helped...
I need a better pen. That statement may mean something dramatically different depending on who just said the words. In...
Whether you’ve spent your career in cyber security on the vendor/provider side or the enterprise side of the table,...
Video and Slide Deck from EH-Net Live! April 2018 As promised, here is the video of the webinar we...
What we learned this week from the news is that, even after that catastrophic breach that Equifax had where...
Join us for EH-Net Live! Free Webinar on April 26 The Ethical Hacker Network (EH-Net) is a free online...
Upcoming Webinars
– EH-Net Live! April – “Safe Harbor for Hackers“ with Casey Ellis & Chloé Messdaghi of Bugcrowd on April 24 @ 1:00 PM EDT. Reg Open Now!
Recent Articles
-
Ease Me Into Cryptography Part 4: TLS – Applied Cryptographic Foundations April 12, 2019
-
Hardware Hacking 101 – Lesson 3: Abusing UART (U Are RooT) April 9, 2019
-
Webinar: Safe Harbor for Hackers March 28, 2019
-
Video: Inside the MSRC – Blue Team, Bug Bounties & IR March 26, 2019
-
Security Assumptions – Don’t Make an ASS of U and ME March 22, 2019
-
From Dev to InfoSec Part 5 – Fortis Fortuna Adiuvat March 21, 2019
-
Webinar: Inside the MSRC – Blue Team, Bug Bounties & IR March 7, 2019
-
Hardware Hacking 101 – Lesson 2: Classical Hardware Hacking February 28, 2019
Featured Community Articles
-
5 Questions For Open Data Centers February 26, 2019
When people hear the term “Open API” they tend to have different thoughts on what that means. Techopedia defines an open API as one that is publicly available for use and while the technical idea of an open API is this, the reality can be quite different. A lot of professionals in IT tend to swa...
-
How to Get the Best ROI in Test Automation January 30, 2019
Testing automation came into existence as we all need to do more testing in the fastest manner, but to derive the best ROI for testing automation, it becomes quite blurry. You may have to be just if able while implementing testing automation all over your organization. Moreover, in the era of Agil...
-
DoD RMF Part 1: How We Got to the RMF October 1, 2018
Over the next few weeks, I plan to post about the RMF process. This will piggy back on and expand upon the article: My Experience with the DoD Version of the RMF. A little background on how the DoD got to the RMF. For those that have been around a while, it started with the Rainbow series of pub...
-
My Experience with the DoD Version of the RMF September 21, 2018
Anyone out there dealing with the DoD implementation of the NIST 800-37 RMF? Just in case, it’s the “Guide for Applying the Risk Management Framework to Federal Information Systems” developed by the Joint Task Force Transformation Initiative Working Group. I have been knee deep in ...
-
Windows Privilege Escalation – Unquoted Services April 23, 2018
So, you’ve popped a user shell on a windows box and now you’re looking to escalate those privileges. Great! In this article we’ll look at one method of elevating your privileges by exploiting unquoted system services. A Windows service is a program that runs in the background simil...
Recent Forum Topics
-
Roadmap to an ethical hacker ?
by
elysse77
1 day, 13 hours ago -
Ease Me Into Cryptography Part 4: TLS – Applied Cryptographic Foundations
by Ellie Daw
1 week, 2 days ago
-
Favourite vulnerabilities scanners
by
hrdwork3r
1 week, 3 days ago -
Favourite OSINT tools
by 1 week, 3 days ago
-
Metaspoit and Bruteforce?
by
sub-terra
1 week, 4 days ago -
Hardware Hacking 101 – Lesson 3: Abusing UART (U Are RooT)
by Ian Sindermann
1 week, 5 days ago
-
Proxychain?
by
subterra
2 weeks, 5 days ago -
Webinar: Safe Harbor for Hackers
by Don Donzal
3 weeks, 3 days ago
-
Share 19 most powerful computer controlled RATs today
by
hirschfeldtoby
3 weeks, 3 days ago -
Video: Inside the MSRC – Blue Team, Bug Bounties & IR
by Don Donzal
3 weeks, 5 days ago
Recent Forum Replies
-
1 week, 3 days ago
-
MTGreen on 4 weeks ago -
Don Donzal on 4 weeks ago
-
deoagent on
4 weeks ago -
siva12 on
1 month ago -
Michael J. Conway on 1 month, 2 weeks ago -
Michael J. Conway on 1 month, 3 weeks ago
-
edwardlibb on
1 month, 3 weeks ago -
mareake on
1 month, 3 weeks ago -
MTGreen on 1 month, 4 weeks ago
