ryan naraine, Author at TechRepublic

ryan naraine

Latest from ryan naraine

Tech & Work

10 Most Vulnerable Software Apps of 2009

According to whitelisting vendor Bit9, these are the most vulnerable software applications in 2009. The critical vulnerabilities found in these programs could be exploited by malicious hackers to take complete control of a Windows computers.

Security

Ten free security utilities you should already be using

Here's a list of ten free security tools you can and should be using to help protect, disinfect and manage your Windows computer.

Security

Haute Secure – Blocking drive-by malware downloads

This gallery takes a look at Haute Secure, a new Internet Explorer add-on that promises to block drive-by exploits from compromising Windows computers.

Enterprise Software

Securing Firefox: How to avoid hacker attacks on Mozilla’s browser

Here are several configuration settings you can make to reduce the attack surface on Mozilla's open-source Firefox browser.

Security

Securing Safari: How to run Apple’s Web browser securely

Here are several steps you can take to disable various features in Safari to reduce the risk of hacker attacks.

Security

Anatomy of an animated cursor attack

Earlier this week, Microsoft shipped an emergency out-of-band patch to block zero-day attacks against a code execution hole in the way Windows handles animated cursor (.ani) files. This gallery provides a visual look at elements of the hacker attacks, including malicious Web sites, the exploit in action and the adult-themed spam-run linked to the attacks.

Security

Metasploit Reloaded

HD Moore's open-source Metasploit Framework has been rewritten from scratch and released with 177 exploits, 104 payloads and new modules to exploit Wi-Fi driver vulnerabilities in the Windows kernel.

In addition to hundreds of exploits and payloads, Moore said Metasploit 3.0 also ships with 30 auxiliary modules to perform tasks like host discovery, protocol fuzzing, and denial-of-service testing. See Ryan Naraine's report on the new version here.

Tech Industry

Black Hat DC 2007

Security researchers discuss vulnerabilities in Wi-Fi drivers, RFID proximity cards and weaknesses in hardware-based forensics.

Networking

Silica — a wireless hacking tool

Penetration testing firm Immunity has started shipping Silica, a wireless handheld pen-testing device capable of finding -- and exploiting -- security vulnerabilities.

The importance of diversity and inclusion in any given organization cannot be overstated. It establishes a level playing field, brings together people with different backgrounds, perspectives, traditions and ideas and enriches company culture by ensuring fairness and tolerance. This helps build a more effective and collaborative workforce which enables the business to run in a ...

Software development is a complex process that involves a specific series of steps (known as the development lifecycle) to transform a concept into a deliverable product. The steps involved with creating the finished product must be carefully adhered to yield the best results, reduce inefficiencies and maximize customer satisfaction. The purpose of this policy from ...

Cybersecurity demands and the stakes of failing to properly secure systems and networks are high. While every organization’s specific security needs form a unique and complex blend of interconnected requirements, numerous security fundamentals almost always apply to each of these groups. It stands to reason that cybersecurity pros who effectively identify network and systems risks ...

ryan naraine

10 Most Vulnerable Software Apps of 2009

Ten free security utilities you should already be using

Haute Secure – Blocking drive-by malware downloads

Securing Firefox: How to avoid hacker attacks on Mozilla’s browser

Securing Safari: How to run Apple’s Web browser securely

Anatomy of an animated cursor attack

Metasploit Reloaded

Black Hat DC 2007

Silica — a wireless hacking tool

Diversity and inclusion policy

Development lifecycle policy

Checklist: Network and systems security

How to host multiple websites on Linux with Apache