Security Awareness & Training Resource Center

Boost the effectiveness of your security awareness program or earn your next certification with free tools from our resource center. Check back frequently — new resources are added every week!

Featured content

Download — HRM (Forrester) Ebook, guide & report

Deconstructing Human-Element Breaches | Infosec HRM

Human risk management isn’t just rebranded SA&T — it’s a profound change of mindset, strategy, process and technology that approaches human-related breaches in a new way. 

Read More about Download — HRM (Forrester)

Our resources

Article

Anti-memory dumping techniques

The term "Memory Dumping" in reverse-engineering is essentially a process of taking a snapshot of the executable. Taking a snapshot means capturing the st
Read More
Article

Mobile working – prepare for the worst, deal with the fallout

What if, either from misuse or loss of your organization's mobile technology, your organization's information is compromised? What if, in spite of all the co
Read More
Article

Web Services

Introduction Software developers have struggled to create software components that can be called remotely over local networks and the Internet. In this proc
Read More
Article

Logging Keystrokes with MSDOS: Part 1

Introduction In the previous article, we saw how we can compile the source code to a 16-bit binary executable, create an iso image with the executable stored
Read More
Article

The IA-32 Real Mode and Interrupts

Introduction We all know that the IA-32 processors have two modes of operation: real mode and protected mode. But why would we want to talk about real mode?
Read More
Article

Hacking java applications using JavaSnoop

We are all aware of tools like Burp, Paros, WebInspect, etc… for intercepting web-based traffic and also for automating the security testing process. However
Read More
Article

Exception Handling

Introduction C# and the .NET CLR use exceptions to indicate that an error condition has occurred during program execution. C# programs are under constant th
Read More
Article

MSDOS and the Interrupt Vector Table (IVT)

Introduction Upon booting up MSDOS, we can observe the memory using the "mem /d /p" command, which will show us exactly which part of memory is used by th
Read More
Article

Diving in the deep web

“Deep Web”, also known as “hidden web”, is a term that evokes the unknown, a mysterious place in the cyber space populated by criminals and hackers that is n
Read More
Article

Building Security in Requirements

Background: Every software application or product is developed based on business expectations. If we want to build a secure product or application, it is ine
Read More
Article

Legal Aspects of Online Gambling

1. Introduction Since the website of the first online casino appeared in 1995, that time, the online gambling business has grown tremendously. H2 Gambling C
Read More
Article

Phishing Techniques: Similarities, Differences and Trends - Part II: Targeted Phishing

For Part I, which discusses Mass Phishing and sets the objects of examination in this paper, please check /phishing-techniques-similarities-differences-and-t
Read More
Article

Memory Models

Memory We know about user mode and kernel mode, and how programs in user-mode can only use the memory from 0x00000000 to 0x7FFFFFFF, while the system uses th
Read More
Article

Paraben’s iRecovery Stick Review

Paraben's iRecovery Stick is a USB flash drive designed to recover deleted data from Apple iOS devices like the iPhone, iPad and iPod touch. The product allo
Read More
Article

ADO.NET architecture

ADO.NET uses a multilayer architecture that has components such as the Connection, Reader, Command, Adapter and DataSet objects. ADO.NET introduced data prov
Read More
Article

Anti-forensics - Part 1

This document is a general summary on the most widely used techniques currently to hide or to make unrecoverable digital tracks of a crime in magnetic me
Read More
Article

Automation Unit Testing with NUnit

NUnit GUI Nunit.exe latest version 2.6 can download from here: http://nunit.org/index.php?p=download.[pkadzone zone="main_top"] The installation process hard
Read More
Article

Mobile Phone Spying Software: Legality, Symptoms, and Removal

Introduction At present, there are many websites offering mobile phone spying software. Typical examples of such websites are SpyBubble (http://www.spybubbl
Read More
Article

Building Custom Controls in C# - Part 2

ABSTRACT This article will enable you to understand parallel axis graphs and how you might want to implement a fully functional, albeit basic, yet effective
Read More
Article

Building Custom Controls in C# - Part 1

ABSTRACT Custom UI Controls require a good grasp of GDI+, collections, delegates/events and smart use of multithreading facilities provided by the C# languag
Read More
Article

Debugging with Visual Studio 2010

The Microsoft Visual Studio 2010 IDE integrates a full-fledged debugger and familiar user interface that provides an assortment of windows, tools and behavio
Read More
Article

PHP: Build Your Own Mini Port Scanner

We all have used a port scanner some day or the other while performing reconnaissance and information gathering regarding a target host. We listed out variou
Read More
Article

Hacking E-banking

1. Introduction E-banking is an interesting target for attackers. The easiest way of stealing money in e-banking is to attack its weakest point – the client
Read More
Article

Exception management

An organization is a complex structure. We can set up frameworks, lay out processes and chart our policies and procedures to be followed; however, in practic
Read More