In a tour de force instructional blog post at Black Hills Infosec, Carrie Roberts displays remarkable acumen in the effort to distill user names via Portswigger's Burp Suite, with LinkedIn as input. In the event that you are at all interested in garnering grist for your pentest mill (so to speak), examine - if you will - Carries' commanding work, you'll be glad you did.
A terrific Red & Blue (in reality - Purple's the Word, in this case) Teaming Leadership post (via Robert A., posting on the Web Application Security Consortium List) detailing his experience leading a Purple Team, and the oversight work assocciated with that team color). Very pleased to see this form of shared learning in the Red Team space. Today's Must Read.
"Purple: Purple teaming in my experience is the oversight of how red and blue operate, coordination to strengthen the effectiveness of both red/blue, and improved relationships with impacted stakeholders (dev/it/ops/etc). It likely isn't it's own team, it's the leaders of the blue/red teams coordinating with it's members and cross-org stakeholders to optimize how they operate." via Robert A.'s superlative post further via Web Application Security Consortium List**)
SANS Penetration Testing Curriculum has crafted a new security poster for 2015 and you can request to have a highly coveted paper copy mailed to you (at no charge, directly from SANS). The deadline to request a poster is April 15, 2015 (If you want one, get on this ASAP as they run out of inventory quickly).