Stuck in Traffic – Metrics on Results

Archive for April, 2016

Stuck in Traffic – Metrics on Results

Posted by

If the end result is the response to an attack, why don’t more metrics measure the response? Take phishing. We need to track the time it takes for IT to investigate and blackhole a phish. That’s what drives organizational immunity. Also, smoothies per mile, but that’s another video.

Watch more videos on my YouTube channel.

Stuck in Traffic – Bypassing AppLocker

Posted by

Each IT security control is a balancing act between several factors. Ease of use, difficulty of abuse, performance, and others all play a part. To demonstrate this, let’s look at Windows built-in whitelisting tool: AppLocker. You can bypass AppLocker because of decisions made to achieve balance.

Watch more videos on my YouTube channel.