Security
Protect Your Website Vulnerabilities With a WAF: New Compairson Report: CloudFlare vs Incapsula vs ModSecurity
A new report came out in February, put together by Zero Science Lab, in which they compare the effectiveness between CloudFlare and Incapsula. In it they did the same thing Philip Tibom of Sweden did last year in his comparative report in which he concluded that Incapsula was the superior product. In this new report…
Read MoreWeb Threats Are Real: Be Proactive
This post is really designed for my family and friends. I write it because in the business that I am in I get to see hear the detrimental impact web based threats have on people. I hear horror stories of lost data, the amount of information they have lost and the impacts it has had…
Read MoreSecurity Implications of WordPress in The Enterprise
My Chileno brother from another mother, Chris Lema, put out a great guest post on WPEngine yesterday talking about WordPress and the Enterprise. He talks to the how and why of it’s emergence in the enterprise scene, but in the process makes a number of statements that very clearly explains the challenges we face as…
Read MoreWeb Application Vulnerability Scanners: W3AF – 12.10 xUbuntu Installation
I have been interested in the Web Application Attack and Audit Framework (W3AF) since I first heard about it last summer, 2012. It was unfortunately not the most straight forward installation, it contains a number of dependencies and not something I was willing to invest into. I was also a bit more novice than I…
Read MoreWordCamp Las Vegas 2012: WordPress Security, Dealing with Today’s Hacks
In December I had the opportunity to speak at WordCamp Las Vegas 2012 on the topic of WordPress Security, Dealing with Today’s Hacks. Every day there are new hacks that come online and the problem is affecting everyone. If you or a friend have found yourself at a tail end of a hack then then…
Read MoreResponsible Disclosure
As of late I seem to get into more and more discussions around this subject. I am fortunate enough to own a web security company which has grown in brand reputation to the point where when we disclose we often get a response, but that is not always the case. We go through the same…
Read More