Roger Grimes
Roger A. Grimes is contributing editor of the InfoWorld Test Center. Roger holds over 40 computer certifications and has authored eight books on computer security. He has been fighting malware and malicious hackers since 1987, beginning with disassembling early DOS viruses. He currently runs eight honeypots to track hacker and malware behavior and consults to companies from the Fortune 100 to small businesses. A frequent industry speaker and educator, Roger currently works for Microsoft as a Principal Security Architect. He also writes the
Security Adviser blog.
by Roger Grimes
Defeat hackers by running the Microsoft Web Application Configuration Analyzer with the same security checks that Microsoft uses on its own servers... more
A few answers help clarify what the Mac Defender scareware plague really means for Mac users and administrators... more
Longtime best-of-breed intrusion detection solution remains feature-rich, easy to use, and actively maintained... more
Low-cost, low-fuss honeypots are highly effective early-warning systems against external attacks and insider threats; KFSensor, HoneyPoint, and Honeyd offer safety, ease, and flexibility... more
HoneyPoint Security Server combines multiplatform support, unique features, and limitations... more
The early leader in intrusion detection honeypots is still around, flexible as ever, but a bit dated... more
How to configure Microsoft's new Windows operating system to beat malware and keep data secure... more
Today's Web browsers have different security pros and cons, and none offers a magic bullet against threats. Here's how to keep your Web surfing secure... more
Deployed correctly, Citrix XenApp can deliver on the remote desktop promise... more
How bad is it? Worse than you think. Here's what the new breed of malware looks like -- and what you can do to stop it... more
The well-rounded LogRhythm XM appliance is feature-rich and flexible, from log collection to analysis... more
NitroSecurity combines a wealth of log management functionality with outstanding versatility in graphs and views... more
GFI EventsManager lacks enterprise features, but is a good software solution for small and midsize businesses... more
ArcSight Logger 4 meets all the requirements of enterprise-grade log management, with plenty of flexibility and options... more
The LogLogic MX3020 appliance is not as feature-rich as some of the competition, but covers the essentials with great ease... more
Trustwave's SIEM-in-one-appliance provides a great deal of functionality for the price... more
ArcSight, LogRhythm, and NitroSecurity ace mining event logs for security alerting, compliance auditing, and other uses... more
Splunk doesn't have all the features of the top competitors, but pairs good value with an active development community... more
How to stop worrying and turn your big, dumb pile of impenetrable event data into instant, actionable intelligence... more
Learn how to put AppLocker, BitLocker to Go, security accounts, and other key Windows 7 security improvements to good use... more
Free and easy security scanner for IIS, ASP.Net, SQL, and Windows servers
