kf0jvt

import os
import json

vcdb_path = 'Documents/development/python/VCDB/incidents'
prc_fix_path = 'Downloads/prc-fix'
mapping = {}

for filename in os.listdir(vcdb_path):
  if filename.endswith('.json'):
    i = json.loads(open(os.path.join(vcdb_path,filename)).read())

kf0jvt

/usr/bin/mongo yourdbname --eval "db.yourcollectionname.find().forEach(function(doc){doc.yourdatefield = new ISODate(doc.yourdatefield);db.yourcollectionname.save(doc)});"

kf0jvt

<!DOCTYPE html>
<script src="http://mbostock.github.com/d3/d3.v2.js?2.8.1"></script>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js"></script>
<style>

body {
  font: 10px sans-serif;
}
 
rect {

kf0jvt

foo = db.vcdb.aggregate([
  { $unwind : "$victim" },
  { $project : { _id : 0,  
    data_total : "$attribute.confidentiality.data_total",
    incident : "$timeline.incident",
    victim_id : "$victim.victim_id" } },
  { $sort : { "data_total" : -1 } },
  { $limit : 10 }
]); 

kf0jvt

import json
import uuid
import copy
import csv 
import datetime
 
infile = csv.DictReader(open('list.csv','rU'))
template = {u'impact': {u'overall_rating': u'Unknown'}, u'incident_id': '', u'reference': '', u'attribute': {u'integrity': {u'notes': u'', u'variety': [u'Modify data', u'Misappropriation']}}, u'notes': u'', u'schema_version': u'1.2', u'summary': '', u'action': {u'hacking': {u'notes': u'', u'vector': [u'Web application'], u'variety': ['Unknown']}}, u'security_incident': u'Confirmed', u'plus': {u'f500': u'N', u'master_id': u'osint523', u'timeline': {u'notification': {}}}, u'actor': {u'external': {u'motive': ['Ideology'], u'country': [u'Unknown'], u'variety': ['Activist']}}, u'victim': [{u'victim_id': '', u'country': '', u'notes': u'', u'industry': ''}], u'timeline': {u'incident': {u'year': 2012}}, u'source_id': u'osint', u'discovery_method': u'Ext - actor disclosure', u'asset': {u'assets': [{u'variety': u'S - Web application'}]}}
 
for row in infile:

kf0jvt

import urllib
import json
import operator

# Only going to grab 300 issues. May need to change this line
filehandle = urllib.urlopen('https://api.github.com/repos/vz-risk/VCDB/issues?state=closed&per_page=300')

usercount = {}

issues = json.loads(filehandle.read())

kf0jvt

import json
import os

def FixAttribute(inDict,filename):
    if 'availability' not in inDict['attribute'].keys():
        print filename + " is messed up."
        inDict['attribute']['availability'] = {}
        inDict['attribute']['availability']['variety'] = ['Loss']
    return inDict

kf0jvt

This week is the start of grad school. Since I'm also working full time I decided to take it easy and only registered for two classes. I know that is a small sample size, but I'm pretty disappointed to learn that both of the classes have a lot of group projects involved in them. And I remember from my time as an undergrad student that (almost) every professor was assigning group projects too. Ugh group projects suck! I had hoped that I would be done with group projets when I left undergrad behind. Collaborative learning: the go-to pedagogy for lazy professors when service learning isn't available for some reason.

First, a distinction

I draw a distinction between group projects and group work. To me, a group project is a larger deliverable where the intent is that students will work together over a longer period of time. Group work, on the other hand, is what I call it when you have students break into smaller groups within the class period to discuss something amongst themselves and possibly produce a sho

kf0jvt

## Ethics
Ethics in information technology is of supreme importance. As we will learn later in this court, the value of information is supported by its Confidentiality, Integrity, and Availability. If these attributes cannot be assured then users will lose faith in the information system and switch to other (possibly less secure) services. Information Technology professionals must always maintain a high moral standard so that users feel more assured that their data is not being compromised internally as well as externally.

In this class we will briefly cover five approaches to ethics, and three world-views that people take in their approach to ethics. This isn't a class on ethics so you will not be expected to know these things in great detail. 

## You're a WEIRD person (probably)
Basically we're all good people, and we want good things for those around us. Yet even in our own communities we often disagree about ethical decisions. And world wide there is even less agreement. Why is it that good people disag

kf0jvt

## IT Controls Matrix

|               | Preventative  | Detective  | Corrective |
| ------------- |:-------------:|:----------:| -----------|
| Administrative|    Policy     |    Audit   |            |
| Technical     |               |            |            |
| Physical      |               |            |            |

## Definitions of Administrative Controls
+ Policy - Broad statement of management intent. **Example:** IT is responsible for secure configuration of endpoints.