How the MITRE ATT&CK Framework Helps You Make Your Business More Secure

by Yves Kraft

The MITRE ATT&CK framework is regularly mentioned, especially when it comes to the analysis of cyber intrusions. But what exactly is ATT&CK and why should you learn more about it?
[read the German article]

02 September 2020: German Testing Day – Talk about OWASP Top 10

At this year’s German Testing Day, Frank Ully, Senior Penetration Tester & Security Consultant, will give a talk on “OWASP Top 10 – How Web Applications Are Attacked and How to Develop Securely” (in German).

The German Testing Day will be held as an online event this year.
Frank Ully’s presentation is scheduled for 2 September 2020 from 11:20 to 11:55.

For more details, check the German Testing Day website.

Signing Office Macros and PowerShell Scripts – Part 2: Peculiarities of Dealing With Signed Code

by Marco Wohler

The first part of this article explained how to use policies to restrict macros and PowerShell scripts so that only signed code is executed.

In the second part, the peculiarities of dealing with signed code are described in more detail.
[read the German article]

23 August 2020: BSides Munich – Presentation on OWASP API Security Top 10

At this year’s BSides Munich, Frank Ully, Senior Penetration Tester & Security Consultant, will explain the 10 most critical security risks for interfaces according to OWASP and will outline possible attacks on APIs in his talk titled “OWASP API Security Top 10 – How APIs Are Hacked” (in English).

BSides Munich will be held as a virtual conference this year.
Frank Ully’s presentation is scheduled for 23 August 2020 from 13:15 to 14:00.

Further information: https://2020.bsidesmunich.org/agenda/