Systems thinking is more than just a handy collection of tools and methods to explore complex systems with – it is also an underlying philosophy, an awareness of the role of structure in creating what we face, of powerful patterns operating on us, and of consequences of our actions.
Scenario planning is a way of understanding the dynamics that are shaping the future. For strategic planning, it stands out for its ability to capture a whole range of possibilities in rich detail. Digital developments are used as running example for explaining the practice.
Still working towards our own pentesting and colourful campaign teams that make us less dependent on companies and organisations, hack to learn was next. If we don’t understand how hackers could get into our systems, we’re going to have a hard time securing them. Learning how to hack can help implement the strongest possible security practices. Plus, it's fun. We took the ethical hacking course and keep updating it with new found ways and tools, thereby keeping current and inferring developments that warrant further investigation.
With an eye on practicality, without determining the nature of an incident, there is no way of knowing how to protect the system and its data better than by forensics. Hacking forensics is the process of detecting hacking attacks (including by corporations and governments) and extracting evidence to report the event and conduct audits to prevent similar future attacks (if possible). It includes techniques for detecting and reverse engineering malware and advanced persistent threats, like Finfisher.
Examples of applying the Art of focused conversation in questions for surveillance capitalism tracking exposed which may be helpful for designing and evaluating our pipeline process.
Threat Modelling is where the fruit and further research into more ways of hacking (and forensics) can be found. An ongoing autodidactical effort that can be turned into an open-space workshop and in the moment can be adapted and extended to meet local needs.
Learning Assembly and C is essential for malware forensics. Like the Kinky Linux command-line, assembly starts with a paper version to easy grok context and once no longer a stranger in a strange land, C is much easier to learn.
The aim of Satir based organisational development is to assist in clarifying choices which fit well with an organisation. This includes facilitating discovery of (alternative) decision pathways. Additional assessments and interviewing can be used, especially where people have doubts about the accuracy of assessments already done. And with roleplay the hard stuff can become clear.
Open Space Technology is especially suitable where communications of measurables and observables need to be tailored to the various people within the organisation and related yet different views need to be bridged while facilitating agreement on success criteria for the definition, implementation and maintenance of policies.
Not all Montessori methods and materials are effective for adult learning, and what can always be used are the principles of respect, education at ones' own speed and learning via hands-on activities. Workshops based on that not only teach a subject thoroughly, they can start a powerful learning cycle.
Blackhoodie, a free, women only reverse engineering workshop.