-
28 Oct 2008My latest security content
Here are two articles I wrote for SearchEnterpriseDesktop.com:Enhancing patch management with NAPUnauthenticated vs. authenticated security testing Here's an article I wrote for SearchSQLServer.com:New security features in SQL Server 2008 leave some work for you...and finally a podcast I just recorded for SearchEnterpriseDesktop.com:Security Policies for Windows SystemsBe sure to check out www.principlelogic.com/resources.html for all of my information security articles, podcast interviews, webcasts, screencasts and more....
Continue Reading... -
13 Aug 2008
Very clever way of recovering passwords from MD5 hashes
In his infinite wisdom, Vladimir Katalov with Elcomsoft has developed tool called MD5 Password Cracker that uses the computing power of NVIDIA graphics cards to recover passwords from MD5 hashes. Very cool. And it's free.According to Elcomsoft, for comparison, this type of cracking on a 2.2 GHz Intel Core 2 Duo E4500 processor only yields about 30 million passwords per second and around 70 million per second on Intel Core ...
Continue Reading... -
23 Apr 2008
Locked out of your Windows system?
So, you're locked out of one of your Windows systems?...maybe you forgot the password or someone changed it on you and then bailed? Well never fret, there is hope.Elcomsoft has recently released a new version of their Elcomsoft System Recovery tool. Now, if you ever get locked out of Windows NT4, Windows 2000, Windows XP, Windows XP, Windows Server 2003, Windows Server 2008 and Windows Vista (including SP1), you've got ...
Continue Reading... -
19 Apr 2008
My security content from this week
Here are my articles and a podcast published this past week:Getting started with web application misuse casesFree security testing tools for Windows handheld devicesIns and outs of password securityAs always, for my past information security content be sure to check out www.principlelogic.com/resources.html.Enjoy!...
Continue Reading... -
06 Feb 2008
Be careful co-mingling passwords
With all things being electronic today and us having to manage a hundred different computer accounts between home and work, here's one of those 'haven't thought of before' security issues that can come back and bite hard when the opportunity arises.First, have one set of common passwords you use for business purposes...You know - the account password(s) you use on the network, email, local computer, PGP, your HR portal - ...
Continue Reading... -
21 Dec 2007
My articles from this week
Here are my information security articles from this week that you may be interested in. Locking Down Today's Data Centers Cracking passwords the Web application way Basic SQL Server security principles you can't afford to miss For all of my past information security tips and tricks be sure to check out www.principlelogic.com/resources.html. Enjoy!...
Continue Reading...
Resources
Client Testimonials
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”
(IT managed services firm)
I’ve written/co-written 12 books on information security including one of the best-sellers of all time:
