This post lists some information about security testing framework guides. You can read about penetration testing methodologies on this post. You can read about secure software development frameworks on this post. List of Security Testing Guide Security Testing Guides featured…
This post summarizes some websites for capture the flag challenges or hackatons. List of Capture the Flag Webs Capture the flag webs featured on this post: HackTheBox Official website CTF365 Official website OverTheWire Official website HackingLab Official website External References
Business continuity is concerned with maintaining critical operations during any interruption in a service. It should make focus on incidents that are not frequent but may cause a big impact on the organization, such as a disaster. Disaster recovery focuses…
This post tries to explain what is an Information Security Program. What is an Information Security Program? According to ISACA, an information security program (ISP) is a set of activities that provide assurance that information assets are given a level…
This post discusses about policies, standards or guidelines to establish secure passwords in an IT system. List of Password Definition Standards List of password generation standards: NIST 800-63B NIST 800-63B is titled “Digital Identity Guidelines“. Official web SANS SPT Password…
This post summarizes hardening guides, security baselines, guidelines or standards for Windows 10. List of Windows 10 Hardening Guides This section summarizes some guides, guidelines, recommendations or baselines to harden Windows 10 endpoints: Microsoft Security Baselines Microsoft Baselines are included in…
This post reviews some security aspects to be taken into account when configuring devices with Google Android OS. This article can be used as a checklist to ensure an Android device is properly configured before releasing it. A standard operating…
Trust-Formation Officer (TFO) is a cybersecurity certification aimed to Spanish-speaking CISOs (Chief Information Security Officers), issued by Spanish non-profit association ISMS Forum Spain. This post tries to cover some aspects regarding the TFO certification. It covers the first cycle of…
This post gives a general and brief overview about IT security and cybersecurity. It also links to other posts within this blog where the information is expanded. Definitions of Information Security and Cybersecurity Information security is in charge of the…
This post lists some public cybersecurity organization of Spain. List of Public Cybersecurity Organizations in Spain Public Cybersecurity Organizations in Spain: Departamento de Seguridad Nacional (DSN) Official Web Centro Criptológico Nacional (CCN) Official Web INCIBE Formerly known as INTECO. Official…