by İsmail Baydan · Published 27/06/2017
Security role is the part where an individual plays in a complete organization security implementation and administration. In this tutorials different security roles and responsibilities in an organization. Senior Manager Senior Manager is responsible for all organization security. Senior Manager will have following roles and responsibilities Sign off all policy...
by İsmail Baydan · Published 24/06/2017
Data classification is important part of the ISO 27001 and Enterprise Security Governance. Data classification will set labels and categories to the given data types. These types will be used to set secrecy, sensitivity, confidentiality levels. If we set all data high security level or classification this will create high...
by İsmail Baydan · Published 10/06/2017 · Last modified 16/06/2017
There are a lot of security certifications in the IT sector. But only some of them are very prestigious and popular. Perhaps the most known and most respected security certificate is Certified Information System Security Professional (CISSP) certification. In this post we will get generally information about certification steps, topics,...
by İsmail Baydan · Published 22/04/2017
Modern days IT needs are changed according to 80’s and 90’s. In the old days just operating IT was enough for success but today’s situation it is changed. We need to secure the IT environment to in order to be successful. There are different methodologies, standard, architectures to design, plan,...
by İsmail Baydan · Published 01/11/2016 · Last modified 05/06/2017
I am pentest guy. I heard that Nessus is very good tool to manage vulnerabilities or vulnerability scanning. How can I install Nessus into my dpkg based pentest box? My distro my Debian, Ubuntu, Kali etc. Get License Key First step is license key. In old days Nessus was provided...
by İsmail Baydan · Published 15/10/2016 · Last modified 04/06/2017
During penetration test one of the test component is brute forcing critical data like password, hash, key etc. One way to brute force is using dictionaries or word list. There are a lot of dictionary in the internet and we generally need to merge them. Dymerge is a security tool...
by İsmail Baydan · Published 04/10/2016 · Last modified 04/06/2017
There are a lot of different tools that helps us while making security tests, security assessment or hacking ;). These tools are sometimes open source sometimes paid software. Google is one of the tool that is used for security tests. It may seem ridicules but it is correct. We will...
