• The Open Web Application Security Project (OWASP Top 10) (https://owasp.org/www-project-top-ten/) is a not-for-profit, online community that publishes several secure application development resources, such as the Top 10 list of the most critical application security risks. OWASP has also
Continue ReadingMonth: September 2023
Threat intelligence Resources
Cyber-attacks become less effective when they are well-known, so new threats and exploits appear all the time. To keep up to date, you should monitor websites and newsgroups.Some examples of threat intelligence feed providers and sources
Continue Reading
Standards, Frameworks and reference architectures
• National Vulnerabilities Database (NVD) published by NIST provides the framework for searching for known vulnerabilities. https://nvd.nist.gov/ • The National Institute of Standards and Technology (NIST) Cybersecurity Framework (https://nist.gov/cyberframework) is a relatively new addition to the IT governance space and
Continue Reading