The Passive Vulnerability Scanner (PVS) can sniff SQL traffic in real-time and then send SYSLOG data to the Log Correlation Engine (LCE)

http://blog.tenablesecurity.com/2010/06/event-analysis-training—analyzing-outbound-sql-queries.html

The Facebook privacy subject is being done to death but unfortunately it is still a point of interest with the continuous increase in user base of the social networking site.

Privacy Defender is bookmark-let and Facebook application that resets your privacy settings and displays them in an easy to read and easy to manage interface to assist users in locking down their profile. This may not be a necessity for a lot of Packet Addict readers but for some.. for the technically retarded or people that simply don’t spend every waking moment on a computer (like myself) it makes some of the complicated not so clear settings in Facebook much easier to understand.

Lifehacker has a good tutorial on how to encrypt your operating system while using a decoy OS to distract intruders from your primary partition.

The tutorial uses TrueCrypt, an open-source powerful encryption tool with a stack of functionality.

Here’s the write up.

This is why! If your not using key auth already on your remote servers that accept SSH connections then I hope this movie will make you rethink your deployment.

Google are running a secure search engine in beta currently. https://www.google.com allows users to setup a SSL tunnel between the browser and googles search engines so that we may all search in privacy. That is, if your a frequent user of internet cafes you can now be sure that your google queries are kept private… at least until google receives the HTTP GET request

Facebook continues to grow ever more popular, and with that growth expands the fear of privacy security. SocialMediaSecurity.com have updated their Privacy guide for Facebook.. so if your new to Facebook or never really looked into your privacy configuration on the popular networking site.. then I recommend having a read over the below link and getting yourself sorted!

http://socialmediasecurity.com/downloads/Facebook_Privacy_and_Security_Guide.pdf

Google release skipfish.. a free web application security scanner.

http://code.google.com/p/skipfish/

There a massive concern for security when dealing with social networking sites such as facebook. Since Websense aquired Defensio, they have been working hard on v2 of the product. Free to users, Defensio 2.0 will monitor your facebook site for malicious posts, spam and viruses. The application cross-references content posted to users pages against their correlated threat databases. If a threat is detected it logs it and advises the end user who then makes the decision to block or not. I would imagine this would then feed into a Bayesian database for a smarter for automatic protection mechanism.

You can sign up for the service and the Defensio website.

Threatfire is an anti-virus anti-malware application that is deployed alongside your existing anti-virus software. Whether that be a fully licensed Norton suite or just AVG Free. The difference between Threatfire and typical anti-virus packages is that it is aimed specifically for Zero-Day attacks. That is, unlike regular virus scanners it does not need to have had a signature written for it in order for it to act on suspicious behavior in the operating system.

Threatfire uses real time behavior monitoring in order to stop brand new attacks simply by identifying abnormal procedure calls or DLL usage.