You are here: Home / Repository of materials

Repository of materials

EC

  • "An Open, Safe and Secure Cyberspace" EU Cyber Security Strategy 

http://ec.europa.eu/information_society/newsroom/cf/dae/document.cfm?doc_id=1667

 

  • Code of EU online rights

 https://ec.europa.eu/digital-agenda/sites/digital-agenda/files/Code%20EU%20online%20rights%20EN%20final%202.pdf

 

ENISA

The report provides a synthesis of the results of the European Cyber Security Month (ECSM) which took place as a pilot project across Europe throughout last October 2012. The report gives an overview of the security-related weeks organised at national level by the eight participating countries - the Czech Republic, Luxembourg, Norway, Portugal, Romania, Slovenia, Spain and the United Kingdom -; describes the role played by ENISA as coordinator of the organisation of the ECSM; and finally identifies a set of lessons learned which could be applied to future ECSMs.

https://www.enisa.europa.eu/activities/cert/security-month/deliverables/2012

 Videos:

https://www.youtube.com/watch?v=q00uIu0YWoo

https://www.youtube.com/watch?v=7UwTAWrFpGI

 

Network Information Security (NIS) in Education

https://www.enisa.europa.eu/activities/stakeholder-relations/nis-brokerage-1/nis-in-education

 

Collaborative Solutions For Network Information Security in Education

https://www.enisa.europa.eu/activities/stakeholder-relations/nis-brokerage-1/collaborative-solutions-for-network-information-security-in-education

Infographics   http://www.enisa.europa.eu/activities/stakeholder-relations/nis-brokerage-1/nis-in-education-infographics

 

  • 2011 report: European Month of Network and Information Security for All - A feasibility study

https://www.enisa.europa.eu/activities/cert/security-month/deliverables/2011

 

  • 2010 reports: Promoting information security as a cultural and behavioural change; Training material for small and medium enterprises;

Information security tips for employees; Internet safety tips for parents and guardians; Online as soon as it happens; How to shop safely online;

https://www.enisa.europa.eu/activities/cert/security-month/deliverables/2010

 

  • 2009 reports: The growing requirement for information security awareness;  Guidelines for parents, guardians and educators on child online protection; Information security awareness in financial organisations - Guidelines and case studies; ENISA’s ten security awareness good practices; ATM crime - Overview of the European situation and golden rules on how to avoid it; https://www.enisa.europa.eu/activities/cert/security-month/deliverables/2009

 

  • 2008 reports: Secure USB flash drives; Secure printing;  The new users’ guide: how to raise information security awareness;  Children on virtual worlds - What parents should know; Obtaining support and funding from senior management while planning an awareness initiative;

Information security awareness in financial organisations; Social engineering: Exploiting the weakest links; Security awareness management in local governments: Approaches in Scandinavia;  Awareness raising quizzes templates: Targeting parents, end-users and SMEs;    

https://www.enisa.europa.eu/activities/cert/security-month/deliverables/2008

 

EUROPOL

 

 

 

 

 

 

 

 

 

European Consumer Center

 

CEN WS ICT Skills

 

OWASP

Here are some OWASP tools, games, videos and document resources that are helpful for developers interested in secure coding and application security in general.

  • OWASP Cheat Sheets

The OWASP Cheat Sheets provide a concise collection of high value information on specific web application security topics. These cheat sheets were created by various application security professionals who have expertise in specific topics.

https://www.owasp.org/index.php/OWASP_Cheat_Sheet_Series

  • OWASP Proactive Security Controls

OWASP Top Ten Proactive Controls is a list of security techniques that should be included in every software development project.

https://www.owasp.org/index.php/OWASP_Proactive_Controls

  •  OWASP Top Ten

The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are.

https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

  •  OWASP Software Assurance Maturity Model (OpenSAMM) The Software Assurance Maturity Model (SAMM) is an open framework to help formulate and implement a strategy for software security that is tailored to the specific risks facing the organization.

http://www.opensamm.org/

  •  OWASP Application Security Verification Standard The OWASP Application Security Verification Standard (ASVS) Project provides a basis for testing web application technical security controls.

https://www.owasp.org/index.php/Category:OWASP_Application_Security_Verification_Standard_Project

  •  Application Security Guide for CISOs

This CISO guide is written to help CISOs that are responsible for managing application security programs from the information security and risk management perspectives. https://www.owasp.org/index.php/Application_Security_Guide_For_CISOs

  •  OWASP Testing Project

The aim of the project is to help people understand the what, why, when, where, and how of testing web applications.

https://www.owasp.org/index.php/OWASP_Testing_Project

  •  Games:

 OWASP Cornucopia

OWASP Cornucopia is a card game used to help derive application security requirements during the software development life cycle.

https://www.owasp.org/index.php/OWASP_Cornucopia

@OWASPCornucopia

 OWASP Hackademics

The OWASP Hackademic Challenges Project is an open source project that helps you test your knowledge on web application security. You can use it to actually attack web applications in a realistic but also controlable and safe environment.

https://www.owasp.org/index.php/OWASP_Hackademic_Challenges_Project

  •  Videos & Podcast Series:

 OWASP AppSec Tutorial Series

OWASP AppSec Tutorial Series is a collection of video lessons that are designed to teach various topics in application security.

https://www.owasp.org/index.php/OWASP_Appsec_Tutorial_Series

  •  OWASP Podcast Series

 OWASP 24/7" is series of recorded broadcasts, highlighting OWASP projects and people from around the world. With over 43,000 members in 100 countries, the OWASP 24/7 channel is available on demand, at anytime, anywhere on the planet.

https://www.owasp.org/index.php/OWASP_Podcast

  • Tools:

 OWASP Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

Twitter: @zaproxy

 OWASP OWTF

OWASP OWTF is a project focused on penetration testing efficiency and alignment of security tests to security standards like: The OWASP Testing Guide (v3 and v4), the OWASP Top 10, PTES and NIST.

https://www.owasp.org/index.php/OWASP_OWTF

Twitter: @owtfp

 OWASP Python Security Project

OWASP project that aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations.

https://www.owasp.org/index.php/OWASP_Python_Security_Project

 

 

BE

 

The number of internet banking fraud cases increases every year. Phishing is the most frequently used method.  Febelfin launched a YouTube video called ‘See how easily freaks can take over your life’ in which it draws the attention to the precautions for safe internet banking.

Video 1:  Security clip showing the risks of sharing too much online "See how easily freaks can take over your life" :http://www.youtube.com/watch?v=Rn4Rupla11M

Video 2:  Security clip showing the risks of sharing too much online  "Amazing mind reader reveals his 'gift' ": http://www.youtube.com/watch?v=F7pYHN9iC9I  Published on  http://www.safeinternetbanking.be

DE

 

 FR

 

LU

  • A practical guide for business travel with a downloadable brochure with recommendations to protect your assets when traveling

Be Safe!

http://www.luxembourgforbusiness.lu/be-safe

Videos:  www.youtube.com/user/CASESLuxembourg <https://www.youtube.com/user/CASESLuxembourg 

 

NL

COBLUE CYBERSECURITY FOR MODERN SCALABLE CYBERSECURITY SOLUTIONS

NO

  • ID Theft quiz

Project from NORSIS   http://www.idtyveri.info/id-theft/

 

SI

  • CERT-Slovenia: Videos to share representing topics of online security produced for 2012 ECSM pilot campaign, with English subtitles. The content includes topics such as: Nigerian scam “This is your lucky day”; Fake on-line stores “Everything's half price at Danny's!”; phishing “Hello, is this a bank?”  Follow the link to watch the videos: http://www.youtube.com/playlist?list=PLUVdjpfSn3X8efezTgGa6jq-guRghskni  

 

 

Specific AR campaigns world wide

 

  •  STOP. THINK. CONNECT.™ is the global cybersecurity awareness campaign to help all digital citizens stay safer and more secure online.

Tips and advice:  http://cybersecuritymonth.eu/references/InternationalCyberAwarenessProgramsNewCampaignPacket.pdf

 

  •  Singapore’s Cyber Security Awareness Day is championed by the Cyber Security Awareness Alliance  

https://www.ida.gov.sg/~/media/Files/About%20Us/Newsroom/Media%20Releases/2013/0724_ncsm/AnnexB.pdf

  •  CrypTool Portal

 The CrypTool Portal raises awareness and interest in cryptography for everyone:  http://www.cryptool.org/en/ctp-education-en

  •  Botnet protection guide

       http://www.fak11.lmu.de/it/it_sicherheit/botnets/