Computer Security Online

Research

Over the life of the company ( both as Computer Security Online & Thinking Security ) we have carried out a fair bit of research and development - both independently and on behalf of clients. Below you can find some of the work that we have been involved in. We hope that you find it useful !

To be alerted to more research additions, blog entries and for other InfoSec information,
Sign up for our free newsletter!

Building UNIX Directory ServicesThis piece of work was done for Microsoft and details how to make UNIX and Windows play nicely together using Kerberos and LDAP. It was originally published on the Microsoft web site, but has more recently been superceded by later editions.

We now have a SPADE project page here.

SPADE This paper was presented at the UK UNIX Users group conference, and details the Statistical Packet Anomaly Detection Engine (SPADE) plugin for the Snort Open Source intrusion detection system.

SPADE This archive contains the SPADE plugins for Snort. There are no guarantees of the functionality of these I'm afraid, as Snort has moved on since these were written.

MalwareThis basic course on Malware was written for ISECOM as part of the Hacker High School educational programme targeted at school children.

ForensicsThis basic course on Forensics was written for ISECOM as part of the Hacker High School educational programme targeted at school children.

News Flash ! Thinking Security and ISECOM are currently revising the Hacker High School lessons to bring them up-to-date ...

nwrapThis Perl script is a simple wrapper that sits around NMap and re-evaluates the open ports against the Open Protocol Resource Database run by Dru Lavigne at ISECOM. It has been featured in the book - Professional Pen Testing for Web Applications (Programmer to Programmer) by Andres Andreu.