June 2nd, 2008 Drazen Drazic
It’s either that response or something along the lines of; “What the hell is that all about?”, “I don’t understand it!”, “Looks like crap!”. I was of the same opinions when Wade introduced me to it a while ago. (Per chance, Wade’s latest post is on that exact topic). I signed up out of curiosity and followed what was going on.
Posted in Uncategorized | 3 Comments »
May 23rd, 2008 Drazen Drazic
Hot off the press from Patrick who sent me this one: Telstra distributes malware-infected USB drives at AusCert.
Thanks to all the people that have been reading my posts on AusCert and those people who have been sending me emails about the posts and their AusCert experience. I was going to close it off with yesterday’s post but I’ve been asked a few times now to add some final thoughts. So here we go:
Posted in Research, Uncategorized | 7 Comments »
May 22nd, 2008 Drazen Drazic
I can see many “sore” heads this morning walking around, but then again, that’s pretty standard throughout AusCert. The dinner last night (Tuesday) was pretty good and great to catchup with people. Always enjoy my time with my mates at TrustDefender. (Blatant promo for the guys. They will do well and I highly recommend you check them out).
Here we go:
Posted in Research, Uncategorized | 1 Comment »
May 21st, 2008 Drazen Drazic
Now I am only covering so much in my posts, but Patrick Gray’s podcasts are well worth a listen to get deeper into the AusCert conference:
http://itradio.com.au/auscert08/
Enjoy!
Posted in Uncategorized | No Comments »
May 21st, 2008 Drazen Drazic
What a weird start to the day…Keynote speaker is John Stewart from Cisco but before he starts, the MC (AusCert dude), looking very sombre, tells the delegates that he has read stuff on Blogs talking about AusCert day 1 and also the lack of local content versus overseas presenters after the first day. He seems really upset by it. “Gees!”, is he talking about me? Or this? I cringe and then I think, hell yeah…..if me, good!…if not me……Good! If this is the wake up call you need, then whoever did it, it may well be worth it to get this conference (and organisation) back to reality! (Personally, I have nothing to do with AusCert and neither do any of my clients….I have no idea of their relevance….I have no idea why I do not! I run a team of security consultants and researchers and none of them do either!) But that’s another story.
Posted in Uncategorized | 6 Comments »
March 20th, 2008 Drazen Drazic
New Columnist: Donal O Duibhir
Why do we beat our heads against brick walls? Is it a form of mass masochism in Information Technology? Who built the walls? Who architected the building, and did they realise the building was supposed to travel in time like Doctor Who’s tardis while repelling alien invaders? …all the while the owners, masters and operators changing every so often without leaving enough intellectual property in the form of documentation or related artefacts… Why is this?
Posted in Industry Specialists Talk, Uncategorized | 7 Comments »
January 27th, 2008 Drazen Drazic
For you non UK or sub-continent readers, sorry, I thought I would throw this out there. 2 dynastys that will always be compared…..I have thrown together what I think are the best two teams from their eras.
Posted in Uncategorized | 29 Comments »
January 25th, 2008 Drazen Drazic
Taking a bit of time to reflect right now…..almost a long time that we’ve been around. Thank you to all our supporters. BorB is now the most read IT Security Blog and News Site in Asia Pacific!* (But….the majority of readers are in the US and Europe!)…….?!?!
*estimated figures based upon potentially dodgy analysis.
Posted in Uncategorized | 11 Comments »
December 24th, 2007 Drazen Drazic
We’re all taking a few days off, but the news section of the site will continue to be updated! Hopefully not too much happens! 
Thanks to all for being readers of Beast or Buddha in 2007. I really do appreciate everyone who comes here.
Have a happy and healthy new year, and see you online soon!
Best Regards
DD
Posted in Uncategorized | No Comments »
November 30th, 2007 Drazen Drazic
Now BG is not leaving BorB….it’s just that BG thinks some of his stuff is too out there for even BorB readers, so he’s doing his own thing. Here it is; http://galootsgossip.blogspot.com/
Posted in Uncategorized | 2 Comments »
October 4th, 2007 Drazen Drazic
Guys, I’ve just been asked to pass this onto any Aussies heading to Kiwicon or others who may be interested in attending:
The “Pre - Kiwicon 2K7″ EurekaStockadeSEC (Sydney, Australia) Gathering.
While there is no formal agenda at CitySEC Gatherings, this will provide an opportunity for ppl to discuss plans for Kiwicon 2K7 - if they haven’t left Australia for New Zealand yet
The “Pre - Kiwicon 2K7″ EurekaStockadeSEC Gathering
Date: Tuesday, November 13, 2007
Time: From 5:00PM
Venue: “The Establishment”, 252 George Street, Sydney, NSW, Australia
Further information on the venue can be found at
http://www.merivale.com/establishment
In addition to the announcement at www.citysec.org under “EurekaStockadeSEC
(Australia)”, I have created a Google Calendar for EurekaStockadeSEC at
http://tinyurl.com/28kcxk too.
Also, if you have not been too or at least heard of CitySEC, please refer to
the Sticky Post “What Is A CitySec Meetup?” on www.citysec.org for further
information.
Posted in Uncategorized | 1 Comment »
August 17th, 2007 Drazen Drazic
Hey, I love my guitars as some of you know……so I have decided that if any guitar manufacturer or distributer needs some vulnerability assessments, PCI scans or Web Application security testing done, I will do it for guitars instead of money.
- Fender: Telecaster….love the strat also but the tele kills it.
- Gibson: Les Paul…love it but the SG has the nicer neck and rocks harder. Probably why I like the tele.
- Dean: Nuff said…current owner and daily player!
- PRS: Any US model…Nuff said
- BC Rich: Gave away a “Bitch” in 1987 and still regret it!
- Maton: Home brand…great rep!
- Washburn: Paul Stanley….nuff said!
etc etc….just call….the list above is just a start!
Line 6 Spider 3…..also most cool!
Posted in Uncategorized | 4 Comments »
August 4th, 2007 Drazen Drazic
I’m booked in to do the following….just saw this link…so if you are in town and free, or rather you have the money…… (the second one…not the usual 7799 will set you free):
I was just about to bag most Security Conferences and then remembered this……I’ll make my mind up then…..after this. I can’t vouch for this one….there’s so many of these things now during the year…..and most are BS. What I can guarantee is a laugh and you already have that now seeing my old ugly rugby head. The content? God knows……..I will probably make it up as I go……they caught me at a bad time…………you can get this from SA for free most times anyway.
http://www.terrapinn.com/2007/srm_au/Custom_17307.stm
Posted in Uncategorized | No Comments »
June 28th, 2007 Drazen Drazic
From Popsci.com; their 10 worst jobs in science.
You got to love the comment from the MS dude: “………….Plus, to most hackers, crippling Microsoft is the geek equivalent of taking down the Death Star, so the assault is relentless.“
Posted in Uncategorized | No Comments »
June 22nd, 2007 Drazen Drazic
Thanks for finding us. Yes, we’ve moved from our original site and into the new BorB domain.
Everything should have come across but a few links may still point back to the old site. We’re working on that.
We’re also in the process of putting in some functional changes to the format here so a few things in terms of layout, colours etc may change in the next week or so as we work our way out of default template territory.
Content though will continue to be of the usual standard.
Posted in Uncategorized | 2 Comments »
June 1st, 2007 Drazen Drazic
A good mate in the industry does his take on things…check the link.
Posted in Uncategorized | No Comments »
May 31st, 2007 Drazen Drazic
Can someone enlighten me as to what this may be? Checking the site stats, we had a visitor who arrived here on the back of a search for “Buddha Porn”?!?!
I suppose that now this is recorded, we may get more hits on this subject.
Posted in Uncategorized | No Comments »
May 19th, 2007 Drazen Drazic
Hey guys, if you’re at AusCert 2007 come by the SA stand and say hello.
Posted in Uncategorized | No Comments »
May 18th, 2007 Drazen Drazic
I kicked off a new company this week….Securus Solutions.
No, I am not selling out.
SA……here’s the plug … www.security-assessment.com is still my baby and it always will be. World’s best security consulting team! Come on….tell me a better one!
Anyway…….the two organisations will be chinese-walled from each other and always will be.
I set up Securus (no stupid play on words….it means “Safe” in Latin… :-)…. because I’ve gotten to know a lot of dudes who had some good product and asked me to front it for them. Security-assessment.com doesn’t do that as you know.
I thought, well do you trust that with your typical reseller? No……thus, Securus Solutions.
More good stuff to come……we’re only starting.
DD
Posted in Uncategorized | 1 Comment »
May 13th, 2007 Drazen Drazic
AusCert takes a stand against budget cutbacks. Related to this post.
Seriously though….I’ve talked about these security surveys before….here. As much as I appreciate the work of fellow security community dudes, we still need to question each other’s work’s relevance, accuracy and what it means in the big picture of improving security practices.
Do these surveys reflect what is happening out there? How accurate are they? AND, my big bug bear, how do the dudes responding know what is actually happening to help provide more accurate stats?…..ie; we see it every day, (as I mention in almost every post)….most companies have no idea what is happening! …so what do the stats really mean? I’ll put it out there and say they are useless and far from accurate stats!
You may say, “Hey Draz, but at least they highlight some of the problems?”…yeah, they do….but I’ve never met one senior decision maker in a company that has even read or heard of the surveys….or rather, I should say, remembers having seen them. So do they preach to the converted? Yeah…they do! Sadly, no one will miss the AusCert Annual Survey in my opinion. They should!
(Aside: SA has a stand at the next AusCert conference next week. Readership here may be small enough for me to feel no repercussions of this post>:-))
Posted in Uncategorized | 3 Comments »
