Penetration testing- Blogs

0xdeadbeef dot info
Extensive information about ethical hacking and vulnerability research, telephony and cryptology. Computer security researcher Marco Ivaldi introduces his exploits, tools, whitepapers, and configuration templates.
http://www.0xdeadbeef.info/

Dominic Baier
Dominick leads the security curriculum at DevelopMentor. This includes teaching and authoring courses about .NET, ASP.NET, WinFX, and ‘Vista’ security. He holds a degree in Computer Science, is a certified BS7799/ISO17799 Lead Auditor, and speaks at various conferences around the world about application security. When not teaching he spends his time researching security, doing audits and penetration tests, and helping other developers worldwide to build more secure applications.
http://www.leastprivilege.com/

Gunnar Peterson

http://1raindrop.typepad.com/1_raindrop/

Hernan Ochoa - Hexale

http://hexale.blogspot.com/

Luca Carettoni - Ikkisoft
Ikkisoft is the personal web page of Luca Carettoni, computer security researcher. His interests revolve around three attractors: ethical hacking, web application security and digital freedom.
http://www.ikkisoft.com/

Mark Curphey - SecurityBuddha.com

http://securitybuddha.com/

Michael Farnum
I am a Security Engineer at Accuvant, one of the largest and most well respected security solution providers in the country. I live in Houston, Texas. I have been in IT since 1994. I have been in the InfoSec field since 2000. I hold the following security related certifications: CISSP, GSEC Silver, Security +.
http://infosecplace.com/blog/

Michael Smith
The concept behind The Guerilla CISO is a bit of BOFH, a bit of ranting, and a bit of “do it this way because it works”. In other words, exactly what I would give somebody in person, and pretty typical blog fare.
http://www.guerilla-ciso.com

personal blog
carnal0wnage Blog
http://carnal0wnage.blogspot.com/

Rich Mogull
Securosis, L.L.C. is the independent security consulting practice of Rich Mogull.
http://securosis.com

Rudolph Araujo
Rudolph serves as a Principal Software Security Consultant and Trainer. Rudolph is responsible for creating and delivering the threat modeling and security code review service lines. He is also responsible for content creation and training delivery for Foundstone's Building Secure Software and Writing Secure Code - ASP.NET and C++ classes.
http://www.codesecurely.org/

Security Second Thoughts
Penetration testing and security research blog. Focusing on wireless security and the convergence of physical and logical security.
http://matthewneely.blogspot.com

Spylogic.net
Security and penetration testing blog.
http://spylogic.net

Stephen R. Moore
Network security analyst and founder of IndySec.
http://stephenrmoore.blogspot.com/

Yousif Yalda
Yousif Yalda's blog dedicated to security and other related topics
http://www.yousifyalda.blogspot.com/

[Pentests]
Blog dedicated to the IT security and especially pentest methods highly illustrated. Also, security solutions, forensics and social engineering are involved. It benefits of an IT Security Consultant Experience. This blog is written in French but Google is our friend ;) For information, your website is quoted by "Agent X - Site de recensement de Pentest"
http://www.mission-security.blogspot.com/


	[Home] [Suggest a Link] [Our Blog] [Contact Us]
	Created in an attempt to have an organized directory strictly related to the penetration testing business, here's the project! Always looking for contributions in terms of submitting links and categories, feedback, and anything that may help the project grow into a useful resource. Don't miss our Blog for any particular tips and tricks and feel free to add yours to our Blogs category!