Home
 Advisories
 Articles
 File Archive
 Interviews
 Pictures
 Quotes
   
Do the w00 (w00w00.mp3)

If you have not started to develop a web application security programme it's possibly time to get things under way. After all you can not undervalue the prerequisite of keeping your business safe because it is of no significance what sort of business you own, your personal computer network is one of your best assets, but left insecure, can become your best culpability When you concentrate on it, the world looks to be full of Web wolves that are attempting to attack PC systems and web sites around the globe, nearly on demand. Each day you read stories of firms that have fallen victim to viruses and worms that have turned their enterprises into a P. C. cemetery. It isn't tricky to imagine the problems with your reputation if your system was to become attacked or you were to suffer mass of info loss, particularly if you do not have acceptable backup systems in effect.

 Today when I went out my car started to smoke. It then started to make a terrible noise. I pulled over right away and called the auto club. They towed my car to the service station. I am not sure how I am going to pay for the repairs, its going to cost a lot. I wonder if they will give me an online cash advance when I'm at work, that way I can pay off the bills. I don't know why I am thinking that way, I know that they won't. There has to be a place where I can get a cash advance. I am going to call a friend for a ride, maybe she'll have a suggestion.

Luckily, developing a weakness management programme isn't as complicated as it first appears. By following 1 or 2 straightforward steps you can reduce your hazards and get back to concentrating on your business with the confidence that comes with a safe backup. Weakness management isn't a 'one size fits everyone ' offer. In the first instance, you want to spend a while, often with some expert guidance and direction, analysing and quantifying the varied facets of your PC network. It's only after this step is complete you can begin the process of developing an activity plan. But before we are going any farther let us take a look at the planning steps you want to take to execute a useful programme. Step 1 is to finish a stock of all of your PC and network assets. The asset listing should be completely complete and that is the reason why you want pro help to be sure that nothing is left out. The tools you may finally use to guard your system need to cover each asset and one straightforward omission can render the entire program pointless. The second part of developing the management programme is to be certain that the management tools you will be using can simply access each of your assets so that continuing scanning monitors the entire list of devices that are present in your system. The tools you'll be using will also help you to develop baselines against which possible defects and exposure points in your substructure can be measured.

The 3rd step creates the remediation process by making certain that patches are installed when obligatory.

It's critical this info is then posted to your asset lists so you have fully updated list. In this manner, any assets which haven't been patched can be centered for weakness checks. Choosing which tools to be used in weakness management suggests that you first have to appreciate each tools capacity and capacity. To do this effectively you may quite likely need pro help so that your penetration testing programme is absolutely effective.

 

April 2003: Added the content of an interview as an About Us section

April 2003: The Files Archive was reorganized a bit and some new content was added. To find out what new things were added to the archive and get a description of what they do, see the NEW.TXT in the archive.

May 6, 2002: w00w00 releases an advisory on another serious vulnerability affecting AOL Instant Messenger. For more info go to this page

Apr. 15, 2002: w00w00 releases an advisory on a vulnerability affecting Multiple Microsoft Products for Mac OS.

Jan. 1, 2002: w00w00 releases an advisory on a major vulnerability in AOL Instant Messenger.

June 2000: "w00w00" is the 20th most frequently searched word on google.com, with 50,000 hits in a single day.

w00w00, with 30+ active participants, is currently the largest non-profit security team in the world (there are no "members"). w00w00 was created in 1998. We have had participants in 5 continents, and 12 countries (Australia, Argentina, Canada, Japan, France, Russia, England, Spain, Sweden, Germany, Portugal, USA), and several U.S. states.








Contact shok@dataforce.net for more information