Tag: Internet

Development, Governance, Risk, and ComplianceLeave a comment

WorkPapers Release, Some Great OS X Applications

SysRisk

First things first! WorkPapers Web Edition is now available at https://workpapers.pro. The site still has a few rough edges, but the project has progressed enough to invite blog readers, registered users of the desktop software, and others for a taste of the best work flow software on the ‘net. Register here to get into the provisioning system. At this time all provisioning is manual in order to evaluate load requirements and have a bit more security control over site access. We’ll automate the process in the near future (actually it’s already coded, but not enabled) after we have determined the … Continue reading WorkPapers Release, Some Great OS X Applications

Governance, Risk, and Compliance, hackingLeave a comment

Accent Zip Password Recovery – A Career-Saver

SysRisk

The fine folks over at passwordrecoverytools.com sent a request for an evaluation about four months ago, and as I was ensconced in a plethora of security work and programming, I never had a chance to test the tool for a good writeup. That was, until I decided to go on vacation last week and a client sent a password protected zip file without forwarding the password! That same client has decided that since I am on vacation, that my emails are not worth responding to! Hmmm…. Hahhhh! (small bellows of smoke roll out from the ears)Well, the password was recovered … Continue reading Accent Zip Password Recovery – A Career-Saver

Development, Governance, Risk, and ComplianceLeave a comment

WorkPapers Release Around The Corner

SysRisk

After much anticipation from the WorkPapers user community, I am proud to announce that invitations for WorkPapers trials and testing will go out throughout the following week. After watching some fireworks tonight (from Honolulu Hawaii), I will setup the first pre-production release that will be setup as invitationware. Those who actively participate in this phase over the next couple weeks will receive a free one year subscription to the service. Please notice the ‘actively participate’ qualifier. That means posting to the user forum with bugs since there will still be a few, suggesting improvements, commenting on your own work application … Continue reading WorkPapers Release Around The Corner

Development, Governance, Risk, and ComplianceLeave a comment

Whew!! Coming Up For Air

SysRisk

Hi All. Crawled out of the dark coding dungeon for some fresh air over the next couple days. Then back into web site touch-ups, alotta photoshop, and some rounding out the rough edges, then deployment. Last night uploaded a milestone version of the web version of WorkPapers to the repository. This version pretty much does all of the base functions – tying together workstep and results editors to the tree view, attachments, project tracking, and the first step of Google Apps integration.Okay, okay, I know you all have no idea on what I am describing… thinking out loud. But when … Continue reading Whew!! Coming Up For Air

Development, Governance, Risk, and ComplianceLeave a comment

New WorkPapers Release Coming

SysRisk

Hi All! It’s been a while, but since then have been hard at work programming on a couple of projects with a couple of languages. Over the past couple weeks, since mentioning WorkPapers in a blog posting, several users have replied via email calling, requesting, and some demanding a new release. Well, it’ll be out in a few weeks. This next release will enhance the previous version synchronize, file exchange, and export – with a few long-awaited reporting upgrades. A subsequent release will include WorkPapers Web Edition with client software synchronization and/or pure filthy rich online experience. This mix of … Continue reading New WorkPapers Release Coming

Development, hackingLeave a comment

MySQL Setup On OS X 10.5x – The Missing Procedures

SysRisk

This posting is basically to document the procedure for setup, so others do not have to go through the ordeal that I went through. I am not sure why more explicit instructions are available , since when I Googled for the run-time errors that were produced as a result of using the MySQL DMG package, there were a myriad of comment postings and forum postings but very few solution. First, download the DMG package and the tar file (both) from MySQL download site. DO NOT INSTALL THE DMG INSTALL PACKAGE. Unpack the tarball and move to /usr/local/yourMySQLVersionFolder (<-substitute with your … Continue reading MySQL Setup On OS X 10.5x – The Missing Procedures

Cybersecurity, Governance, Risk, and ComplianceLeave a comment

WorkPapers Software, Java, Google Web Toolkit, and DCMA

SysRisk

Hi All!! Still alive and kicking. Been a couple weeks since the last posting but have been hard at work putting together another platform iteration of WorkPapers software. So far, I have created the audit working papers management software solution in Cocoa and RealBasic, so this time around thought I would try one more iteration in Java and Ajax. For more information about WorkPapers, please see the projects page on this web site. This will give a cross-platform solution that will sync with a web-base Ajax interface… sexy! So now that I am in advanced stages of this programming iteration, … Continue reading WorkPapers Software, Java, Google Web Toolkit, and DCMA

Governance, Risk, and ComplianceLeave a comment

The Next Wave – Preventive Security and Statisticians

SysRisk

Over the past couple weeks I have concluded that enough (bad) breath has been spent ranting about how system and security auditors really are missing the mark. However, one cannot reasonably just point a finger in one direction – it takes two to tango, so it is now time to point out what CIOs and administrators of secure environments should start to consider in order to prevent incidents. And along the way add a rant or two about how the average CIO (too) is an administrative paper-pushing, policy guru that does not really have real systems administration experience – most … Continue reading The Next Wave – Preventive Security and Statisticians

Governance, Risk, and ComplianceLeave a comment

IT and Infosec Auditor Shortcomings – SANS Joins The Dialog

SysRisk

Actually, SANS has been in the dialog, but they put out an article that reinforces the issue of how IT and Infosec auditors – and many consultants alike – are not delivering the proper value to the market. I wrote this article last year that ranted on the issue, and many responded through email and comments to show support of the view. This was an issue that I noticed about five years ago as ISC2, ISACA, and other organizations really focused on increasing membership and increasing revenues. Also, from my experience in the Big Four over the years, I noticed … Continue reading IT and Infosec Auditor Shortcomings – SANS Joins The Dialog

Cybersecurity, hacking, SocialLeave a comment

Twitter Phishing Rampant – Today’s Flavor

SysRisk

The Twitter buzz (<- that’s funny) this morning were a bunch of postings about a phishing direct mail that would include a link which included a link to bzpharma.net (don’t click here if my blog software automatically links!!). When the end-user goes to the site, malicious software is executed that retrieves the user’s Twitter password, then spam direct messages all of their followers. Nasty and too bad. I have grown to like Twitter and other similar services as yet another networking medium. After seeing several hundred tweets (I’m up to 700-plus followers on @sysrisk), lo and behold, I received one … Continue reading Twitter Phishing Rampant – Today’s Flavor