Forwarded from RUSCADASEC news: Кибербезопасность АСУ ТП (Anton Shipulin)
Новая дока от SANS о создании экономных испытательных/образовательных кибер полигонов с применением контейнеризации сетей: Container-Based Networks: Lowering the TCO of the Modern Cyber Range
https://www.sans.org/reading-room/whitepapers/testing/paper/39120
https://www.sans.org/reading-room/whitepapers/testing/paper/39120
www.sans.org
SANS Institute: Reading Room - Penetration Testing
Computer security training, certification and free resources. We specialize in computer/network security, digital forensics, application security and IT audit.
Уровня кибербезопасности "домашний пользователь" больше нет. Он сравнялся с корпоративным или даже с оборонным.
https://www.schneier.com/blog/archives/2019/08/the_myth_of_con.html
https://www.schneier.com/blog/archives/2019/08/the_myth_of_con.html
Forwarded from RUSCADASEC news: Кибербезопасность АСУ ТП (Anton Shipulin)
US DHS выложили на GitHub код их и так ранее бесплатного инструмента для проведения самооценки состояния кибербезопасности ИТ и ICS: Cyber Security Evaluation Tool (CSET)
The Cyber Security Evaluation Tool (CSET®) provides a systematic, disciplined, and repeatable approach for evaluating an organization’s security posture. CSET is a desktop software tool that guides asset owners and operators through a step-by-step process to evaluate industrial control system (ICS) and information technology (IT) network security practices. Users can evaluate their own cybersecurity stance using many recognized government and industry standards and recommendations.
https://github.com/cisagov/cset
The Cyber Security Evaluation Tool (CSET®) provides a systematic, disciplined, and repeatable approach for evaluating an organization’s security posture. CSET is a desktop software tool that guides asset owners and operators through a step-by-step process to evaluate industrial control system (ICS) and information technology (IT) network security practices. Users can evaluate their own cybersecurity stance using many recognized government and industry standards and recommendations.
https://github.com/cisagov/cset
GitHub
GitHub - cisagov/cset: Cybersecurity Evaluation Tool
Cybersecurity Evaluation Tool. Contribute to cisagov/cset development by creating an account on GitHub.
Если ваш бизнес имеет заметное представительство в ЕС, стоит оценить необходимость участия его в данной активности.
Forwarded from Oleks Bodryk
Attendees that would like to receive the digital version of the Secure Software publication can mail me directly. Maybe good to inform them about it. for this request they can mail at Stef.Zelen@securesoftwarealliance.org or stefzelen@gmail.com
Forwarded from RUSCADASEC news: Кибербезопасность АСУ ТП (Anton Shipulin)
В сентябре (по словам авторов 4 сентября) в онлайн-магазине компьютерных игр Steam выйдет профессиональная игра «ThreatGEN: Red vs. Blue», направленная на обучение методам нападения и защиты технологических сетей
ThreatGEN™ Red vs. Blue is the industry's first multi-player strategy computer game where players compete against each other, head-to-head, to take control/maintain control of a computer network. This is not a fiction-based game like those found on the consumer gaming market. This is a live, player vs. player "gamified" training simulator, designed to teach cyber security skills in an immersive and interactive applied learning environment.
Which side will you choose? The hackers (red team) or the cyber defenders (blue team)? Battle head-to-head in turn-based cyber warfare, where the fate of a company's computers, network, information, and even critical industrial control systems hang in the balance.
https://store.steampowered.com/app/994670/ThreatGEN_Red_vs_Blue/
ThreatGEN™ Red vs. Blue is the industry's first multi-player strategy computer game where players compete against each other, head-to-head, to take control/maintain control of a computer network. This is not a fiction-based game like those found on the consumer gaming market. This is a live, player vs. player "gamified" training simulator, designed to teach cyber security skills in an immersive and interactive applied learning environment.
Which side will you choose? The hackers (red team) or the cyber defenders (blue team)? Battle head-to-head in turn-based cyber warfare, where the fate of a company's computers, network, information, and even critical industrial control systems hang in the balance.
https://store.steampowered.com/app/994670/ThreatGEN_Red_vs_Blue/
Steampowered
ThreatGEN: Red vs. Blue on Steam
ThreatGEN: Red vs. Blue is an educational game-based cybersecurity simulator designed for those with genuine interest in cybersecurity. Learn and practice cybersecurity concepts & strategy, play as the red team (hackers) or the blue team (defenders), single…