Resources

Content Leader: Jess Garcia - Last Updated: March 1, 2007

Mailing Lists

These are some of the mailing lists you should be checking:

Generic:

• Bugtraq: A must. If you only subscribe to one, this must be it.
• NT Bugtraq: A Windows-only equivalente of Bugtraq.
• Full Disclosure: Hmmm... I should probably not be recommending this one, too much noise these days. Good to know it exists, though.

Specific:

• Firewalls:
  • fw-wizards General discussion about firewall technologies, and much more.
  • fw1-gurus If you are in the Checkpoint side of things.
• Intrusion Detection:
  • Focus on IDS General discussion about IDS technologies.
  • Snort: In case you use "the pig" for your Intrusion Detection.
  • loganalysis General discussion about log analysis.
• Honeypots:
  • honeypots General discussion about Honeypots and Honeynets.
• Incident Response & Forensics:
  • forensics General discussion about Forensics.
  • incidents (@SANS) General discussion about Incidents.
  • Incidents (@Securityfocus) General discussion about Incidents.

Still want more? You can find references to over 150 security lists here.

Newsletters:

These are some of the Newsletters you might want to receive periodically:

• SANS @RISK: A weekly newsletter with a summary of all the vulnerabilities appeared in the last 7 days classified by area (Windows, UNIX, Cross-platform, Web Applications, etc.). An essential & time saving resource.

RSS Feeds & Blogs

JSS Recommends

• http://taosecurity.blogspot.com/rss.xml
• http://netsec.blogspot.com/

Other

• http://www.uninformed.org/uninformed.rss
• http://www.insecuremag.com/insecure.rss
• http://backend.secwatch.org/be-advisories.rss
• http://packetstormsecurity.org/headlines.xml
• http://feeds.feedburner.com/darknethackers
• http://www.ethicalhacker.net/index2.php?option=com_rss&feed=RSS2.0&no_html=1
• http://www.professionalsecuritytesters.org/backend.php
• http://www.digitalbond.com/SCADA_Blog/atom.xml
• http://www.darkreading.com/rss_simple.asp?f_s=318&f_ln=Dark+Reading+News+From+Other+CMP+Sites
• http://www.darkreading.com/rss_simple.asp?f_s=297&f_ln=Dark+Reading+News+Feed
• http://www.darkreading.com/rss_simple.asp?f_s=296&f_ln=Dark+Reading+News+Analysis
• http://spiresecurity.typepad.com/spire_security_viewpoint/index.rdf
• http://blog.ncircle.com/index.rdf
• http://securityincite.com/blog/feed
• http://addxorrol.blogspot.com/atom.xml
• http://www.hexblog.com/atom.xml
• http://www.lightbluetouchpaper.org/feed/
• http://www.cerias.purdue.edu/weblogs/feed/
• http://www.livejournal.com/users/bruce_schneier/data/rss
• http://www.governmentsecurity.org/rss/governmentsecurity.rss
• http://www.securiteam.com/securiteam.rss
• http://www.matasano.com/log/feed/
• http://blog.washingtonpost.com/securityfix/index.xml
• http://www.ranum.com/index.rss20
• http://www.virusbtn.com/library/feeds/virus_news.rdf
• http://www.virusbtn.com/library/feeds/spam_news.rdf
• http://metasploit.blogspot.com/atom.xml
• http://asert.arbornetworks.com/feed/
• http://djtechnocrat.blogspot.com/atom.xml
• http://www.sans.org/newsletters/newsbites/rss/
• http://www.sans.org/newsletters/risk/rss/
• http://iscxml.sans.org/rssfeed_full.xml
• http://www.sans.org/reading_room/rss/
• http://www.securityfocus.com/rss/vulnerabilities.xml
• http://www.securityfocus.com/rss/news.xml

Thanks to the amazing members of the giac-alumni@sans.org mailing list for this great compilation

Webcasts:

These are some sites offering periodical webcasts:

• SANS Webcasts: SANS offers weekly webcasts on multitude of topics.
• Cyberspeak: Technology Podcast with coverage of Computer Security, Computer Crime and Computer Forensics topics.
• SearchSecurity: Periodical webcasts on different topics.
• Security Now!: 20 to 30 minutes near the end of each week to discuss important issues of personal computer security.
• PaulDotCom Security Weekly
• RADAJO
• MightySeek
• CERT
• The Silver Bullet Security Podcast

News Portals:

These are some of the News Portals you should be checking (some of them may have RSS feeds):

• ISC Handler's Diary: The SANS Internet Storm Center Handler's Diary. One of the most important resources on the net.
• Securityfocus: Popular web site hosting many popular mailing lists, papers, news, etc.
• Linuxsecurity: Good site for Linux Security news and related topics.
• Slashdot: Good security skills require good knowledge of the world. Slashdot is the place to keep updated.

Online Publications:

These are some periodical online publications:

• SANS Advisor: SANS Advisor specializes in very short, pragmatic articles on whats new at SANS, security, operations, audit and IT related legal topics.
• Uninformed: Technical outlet for research in areas pertaining to security technologies, reverse engineering, and lowlevel programming.
• Obsidis: Obsidis is a scientific/underground magazine that focuses on research in ICT security.

Vulnerability Alert Services

• FrSIRT - English - French
• Symantec Deepsight Alert Services
• SecurityMob
• iAlert Web
• TraceAlert
• SecurityTracker
• Cybertrust Vulnerability/Threat Management
• Secunia Vulnerability Tracking Service
• X-Force Threat Analysis Service
• http://www.securitywizardry.com/alert.htm
• E-Secure-IT
• Sintelli

Vulnerabilities & Threat Reports

• SANS Top 20
• Symantec Threat Report
• OWASP Top 10