A Fantasy Explanation of Standard vs. Blind SQL Injection
Many in InfoSec get confused about the difference between standard and blind SQL injection. Here’s a simple way to think about it. In both cases you…
Category: Mix
Happiness: Creation vs. Collection | Daniel Miessler
I have an observation that I’ve been mulling for the last few days: unhealthy people collect things. Healthy people create things. Naturally, statements like these…
Segmented Web Browsing Will Be the DMZ of the 2010’s
The recent AURORA attack is about to change how the web browser is handled within the enterprise. This sort of exposure will introduce a concept…
Availability Bias | Daniel Miessler
One of the most important dynamics at play within layperson debate is Availability Bias, which is where people are prone to believe that something is…
The Simple Reason New Year Resolutions Are Crap
New Years resolutions are supposedly for people who plan on making changes in their lives. But they really aren’t. They’re actually for people who only…
Meet Burp Suite DAST: A clearer name for the industry’s leading DAST solution | Blog
Andrzej Matykiewicz | 15 April 2025 at 13:22 UTC Burp Suite Enterprise Edition has a new name: Burp Suite DAST. This new name better reflects…
Social Media is Nothing But a Global Interface to You as a Person
The problem newcomers often make when thinking about social media (Facebook, Twitter, etc.) is thinking about it as some sort of additional thing–as if there’s…
The Only Class That Matters
To have “class” means different things to different people. Some think it means having money. Others think it means being able to identify and procure…
Harry Potter and the Extension of Reality
This will be a strange post. I just finished the Harry Potter series, and I’m a bit overwhelmed. I’m quite sure it’s the best series…
How to Manage a Cisco Device via Console Using a USB Port in OS X
Problem: you need to manage a Cisco device via console, but the only box you have available is your non-macpro-mac, i.e. you don’t have a…
My Only Shot at Immortality
Like my religious friends, I too would like to live forever. The thought of there being an end to my learning–a point at which my…
Secrecy (Obscurity) is a Valid Security Layer
Many of us are familiar with a concept know as Security by Obscurity. The term has negative connotations within the infosec community—usually for the wrong…