In this (supposedly) frequently updated article, I list websites and publications that I find useful as a referential/background for my cybersecurity activities. Basically, this is a dump of my Feedly subscriptions list, assorted with additional elements (books that I read, links I don’t want to lose, and so on).
- General IT news – it is important to keep a broad mind when it comes to cybersecurity!
- General technical publications
- ANSSI (French security agency) technical notes: https://www.ssi.gouv.fr/entreprise/bonnes-pratiques/. They publish a ton of well-structured and very consistent technical notes on various topics, mostly operating systems security. A good go to to find a starting point for implementing your server and workstation infrastructure security.
- Cybersecurity news
- A Few Thoughts on Cryptographic Engineering: https://blog.cryptographyengineering.com. A well thought out blog about cryptograpic implementations in everyday pieces of hardware and software, focused on their shortcoming and the lessons that can be learned.
- The Cryptography channel of Topix: http://www.topix.com/science/cryptography. Topix is a kind of a news aggregator. Not all the content is relevant but it’s a nice source of information to avoid missing important events.
- The Cryptography subReddit: https://www.reddit.com/r/crypto/. Well, that’s Reddit. A collection of brilliant people that don’t always do brilliant things. That sub is very rich in content and excellent advice, so I strongly recommend giving it a shot.
- Virtualisation news