justinclarke.com

As an O'Reilly author I recently got a preview invite to sign up on the new O'Reilly Connection site. This is a personal networking site where you can provide a whole lot of info about yourself, and then find people with similar interests . One interesting difference is that this one is more professionally focused with features such as a job posting and search functionality.

A friend and old colleague of mine has been working on a tool for quite a while now, and he has recently released it publicly. It is called Oedipus, and is a tool for penetration testers for web application security pentesting. It is available here.

The reporting functionality is pretty basic at the moment, but the testing framework seems to be pretty robust. The entire thing is written in Ruby, and is designed on a modular plugin basis to enable easy maintenance and extension. I'll probably be covering more on it sometime soon as I have an opportunity to peek under the bonnet :-)

I got sent a link to LinkedIn about a week and a half ago. In the mean time I've located lots of former colleagues, clients, and friends on the system. It seems to me to be a whole lot more useful than most of the social networking sites I've seen, and has the added bonus that lots of the security industry has accounts on it.

You can find my LinkedIn profile here.

Bruce Schneier has an interesting contest on his blog. The goal? Cause some terror through the most unlikely, though plausible, terrorist attack scenario movie plot.

Some of the plots posted so far are weird and wonderful. Follow the link above to see more.

With the able assistance from the Uncon IRC list (thanks to ollie in particular), colleagues, and my previous lists, I have just generated myself a new list of security, IT and general news feeds that I will be monitoring.

For reference, I use the Liferea reader on Ubuntu since its simple and easy to use, and since I spend most of my day in Linux. I exported the feed list in OPML format, which should be readable by most compliant feed readers. The current list can be found at http://www.justinclarke.com/feedlist.opml, and will be periodically updated as I add and delete feeds. Comments, additions and suggestions welcome.

I found this particularly amusing as I went through my security feeds :- George Bush Appoints a 9 year old to be the Chairperson of an Information Security Department. Spot what is wrong with the URL - shame on you CBS News!

Update - www.first.org seem to have removed the page.

We have finally finished revamping the Gotham Digital Science website. New stuff includes the GDS Blog (as well as related RSS/Atom feeds), as well as a GDS tool download page.

Check out the blog for interesting technical content, including lessons learned and tips from our source code review/application vulnerability remediation work, as well as for some of the tools we'll be releasing in the coming weeks.