by Charles Herring | Feb 20, 2020 | blog, InfoSec Craft, InfoSec How-To, Uncategorized, WitFoo Story
Last year, I spoke at 26 security meetings and conferences. I learn the most when I’m in the field with my heroes. If you have a local meeting or conference that would benefit from any of these topics, let us know and I’ll do my best to show up. Bio...
by Charles Herring | Oct 29, 2019 | blog, InfoSec Craft, Inside WitFoo
Abstract Developing software that changes the world, exceeds customer expectations, provides turn-key functionality in diverse scenarios while meeting security and compliance requirements is the holy grail of Security Development Operations (SECDEVOPS). There are...
by Charles Herring | Oct 23, 2019 | blog, InfoSec Craft
Recording of Presentation Downloads My deck on Breaking NBAD & UEBA Talk given at DEFCON & GRRCON (2019) can be downloaded here: download link. The script referenced in the talk can be viewed on the Pastebin dump. Abstract Network Behavior Anomaly Detection...
by Charles Herring | Sep 4, 2019 | blog, Inside WitFoo
In the coming weeks, beta testers will begin receiving a sneak peak of Precinct 6.0 (code name: Olivia Benson.) There a number of exciting leaps in our most advanced build. Cassandra – Infinite Storage & Replication A major shift in 6.0 is in the backend...
by Charles Herring | Nov 22, 2018 | blog, InfoSec Business, Inside WitFoo, WitFoo Story
I have so many things to be thankful for this year including my family, our investors, customers, partners, contributors, advisers and employees but after spending a few weeks on the road meeting with awesome customers and prospects, I wanted to take a moment on this...
by Charles Herring | Nov 9, 2018 | blog, InfoSec Craft, InfoSec How-To
We are often asked how we are able to calculate metrics as described here: And demonstrated/explained here: In this installment I will explain how you can calculate Return on Investment of any security tool using reclaimed FTE labor hours as the purchase...
