Security

Provides cross-platform computer forensics tools for digital forensics and e-discovery.

Provides electronic evidence preservation services, electronic discovery consulting, and civil litigation support.

Provides digital forensic investigation services. Focusing on computer crime and misuse on behalf of legal practitioners, companies, local governments and law enforcement agencies.

Provides data discovery and forensics for civil litigation.

Investigates computer crime, and supplies forensic investigation equipment and software.

Managed network and security solutions for small and medium sized businesses. Based in Denver, Colorado.

Provider of network security training and specializing in firewalls, VPN, IDS, encryption, scanners and penetration testing.

Services and training for compliance projects in the field of data protection.

Features a background, basics, design, implementation issues, port and protocol issues. By Matt Curtin and Marcus Ranum. Documents are also available in Postscript and PDF.

Linux security and related software articles and tools.

Criticisms of Intel's Processor Serial Number (PSN) feature on its Pentium III chips. Argues that the PSN endangers internet users' privacy.

Hailstorm Enterprise Solution has two product lines for Security Quality Assurance: Hailstorm Web and Hailstorm Protocol Modeler. Overview of products, services, and companies profile.

No 1 e catalogue exchange center, Trading information exchange center, Global Security Information Key implement.

A mediator service for business transactions.

Information security consultancy offering training, assessments, managed and unmanaged security and privacy services.

Includes securing your server, protecting confidential documents on your site, safe CGI programming, client security, and privacy.

This paper describes how many small business claim to be offering a secure order form, when in fact, they really are not. The paper shows how the insecurity occurs, and offers a few solutions to the problem.

Demonstrations of security risks and advice for safe use of a web browser.

Book that covers how to hack web applications, and how to secure against the attacks detailed. Author profiles, links to tools referenced in the book and reviews.

Features a dynamic threat management system that monitors security breaches and internal misuse without relying on attack signatures.

Real-time network sensor-based Intrusion Detection System (IDS). Based on snort, features include live signature updates and custom signature creation.

Network and host based IPS systems designed to detect, classify and stop threats. Includes technical information on solution components and support pages.

Article about spyware keyloggers, how they work, how to remove them and prevention of keystroke capture.

Doctoral student involved in spyware related research and investigations into associated unethical practices. Includes research papers, news, biography and presentations given.

A very detailed look at what spyware is, how it attaches itself to computers, and the common methods of prevention.

Featuring a list of malware-related sites plus a discussion forum on new threats.

Advice for novice users on which free anti-spyware software applications to install on their systems.

A skeptical look at anti-virus protection.

Protection software/hardware that prevents worms and viruses from infecting corporate gateways.

Vulnerability Notes published by the CERT Coordination Center.

Includes a summary of the DoD's "Trusted Computer System Evaluation Criteria" (Orange Book) - if you've ever wondered what a C2 security rating is, this is the place to find out.

A commercial manual with sample policies. Topics include: Email; Internet Usage; Personal Computer Usage; Information Security; and Document Retention.

A global provider of pre-packaged security policies and customizable implementation guidance.

The security ontology offers innovative software solutions in the areas of IT-security, semantic technologies, and sustainability.

One page Acceptable Use Policy example.

Basic DR policy in just over one side.

From the University of North Carolina, Greensboro. Covers the retention of various data files, including those subject to litigation.

Policy from the University of Colorado on the use of email and other means of electronic communication for official purposes.

Information on the development of cyber and information security standards with emphasis on reliability.

Training and consultancy support services for those implementing ISO/IEC 27001 and BS 25999-2

Cloud service to support implementing, maintaining and improving your ISO/IEC 27001 information security management system.

Cryptographic products to secure electronic payments, network connections and SCADA systems, manage identities.

Manufacturer of user authentication tokens, including a CESG-certified version for UK Government use.

Transparently deployed appliance to record, replay remote sessions including Remote Desktop, Citrix ICA, SSH, Telnet, FTP, Email, CIFS, various database transactions.

Password recovery kit for popular software.

Add-on program for QuickBooks to open QB files without knowing the password.

Web based Excel password recovery service. Privacy policy, service explanation and contact information.

Recover passwords for Access, Outlook, Word, Excel, Project, ACT!, Peachtree, MYOB and others.

Password recovery tool for Windows NT/2000/XP/2003.

Biometric and PIN activated password generators/managers. Provide users with convenience, privacy and security in management of web site, LAN/WAN, VPN and digital certificate passwords.