About Barnes

About Barnes

Private internet presence since 1994, exploring and applying internet technologies.

Since the first publication, my focus has always been on understanding and applying technologies in the context of the internet. That's why you'll find "Projects" here that deal with infrastructure, engineering, software development, and knowledge transfer.

Additional Information

My name is Bernhard Kreinz or Bernie Kreinz, or simply Barnes. You can find more about me on LinkedIn. On Twitter, you can reach me at @fr33thought. Since Q1/23 also caught the LLM fever -> Tweaking my Website :-). Since December 22 - Out of necessity, developed the prototype "Thought Experiment on Cyber Threats" -> Project Cyber Risk Management ;-). Since 2004 okornok.com -> Project OKorNOK. Since November 1997 active with barnes.ch :-) -> including Project Teaching Webmasters. Since 1994 publishing and experimenting with a static IP. 1984 - I started with a Commodore 64 and an acoustic coupler.

Obviously, I am very passionate about the topic of cyber threats, which is why it deserves its own project. And it also influences my "playground" - but please take this part with humor.

OKorNOK

OKorNOK

One of the first social network websites, prototype created in 1994.

This is one of the very first social network websites ever. The prototype was created in 1994 when I was still working without my own domain. Curious? I call it OKorNOK. Who's coming? Who's not? For all kinds of occasions. Yes, I was here before Facebook—but without entrepreneurship ;-)

Additional Information

Today, this platform helps me stay proficient and up-to-date across the entire technology stack—knowledge is good, being able to apply knowledge is better ;-)

Jump to okornok.com
OKorNOK

Playground

Sometimes you need to express your anger or frustration, for example, through images or songs. That’s why the following content should be taken with a wink. If you don’t have a sense of humor, well... never mind. Have fun, everyone!

Sing it out loud - Cyber Standards Bodies Bashing

Cyber Threats

The following songs, made with SUNO V4, reflect my past mood very well. They are about my project on Cyber Threat Clusters. Curious? You can read the lyrics by clicking on each track's title.


(E) Metal RAP Version: Against the wall

Blues Rock Version: Cyber Standards Blues

Progressive Rock Version: Cyber Standards Chaos

Progressive Rock Version: Cyber Standards Blues

(E) Female Hip Hop RAP: Another Framework Update

Pop Version: Cyber Standards Bodies - Listen Up

Pop Version: Cyber Pop - Fighting Blind

Pop Version: Cyber Pop - It's a Call to Act

Soul Version: Cyber Standards Blues

Soul Version: Cyber Standards Bodies - Listen Up

Sing it out loud - CISO Bashing

Cyber CISO
Rock: Believers in the Standards

Hard Rock Rap: Hard Core Believers in the Standards

Pop: Melancholic Believers in the Standards
Cyber Threats

Top Level Cyber Threat Clusters (TLCTC)

By establishing a universal language for cyber threats, this framework redefines how organizations of all sizes identify, communicate, and manage cyber risks.



You can access the original HTML white paper (up to version 1.4) here: 10 Top Level Cyber Threat Clusters


The scope and potential of the concept have earned it its own dedicated domain — where you'll always find the latest version and much more. Visit WWW.TLCTC.NET

Project Cyber Threat Clusters (07/2024)

Watch my intro video on the 10 Cyber Threat Clusters

Webmaster SIZ

Webmaster SIZ

Publications and learning materials from Webmaster SIZ instructor years 1998-2000.

Hier finden sich meine Publikationen, bzw. Lernunterlagen, welche ich als Dozent Webmaster SIZ in den Jahren 1998-2000 erstellt und verwendet habe. Der Aufbau einer Schulung für Webmaster in Form von Erwachsenenbildung? Ich zögerte keine Sekunde.

Additional Information

Other Brain Dumps

The Cyber Standards Cross-Reference Problem (01/2025)

MyBRainThe cybersecurity landscape suffers from what we might call a "circular reference nightmare." Standards bodies and organizations like NIST, ISO, ENISA, ETSI, BSI, OWASP, and MITRE have created an intricate web of cross-references without establishing fundamental definitions.

CrowdStrike 2024 Threat Hunting Report from perspective of the TLCTC (12/2024)

CrowdStrike2024ThreatHuntingReportSee how the 10 Top Level Cyber Threat Clusters (TLCTC) framework enables enhanced comparison of threat actors, including APTs. Based on CrowdStrike's 2024 Threat Hunting Report, this interactive visualization reveals capability patterns across different adversary groups.

ISO 27k Standards and the Lack of Cyber Threat Categorization (11/2024)

cyber-ISO27kSince cybersecurity has found its place on the title page of the 2022 version, we should examine how ISO approaches cyber threat categorization. While ISO standards provide valuable frameworks for information security management, there are opportunities to enhance their approach to cyber threat categorization - particularly in bridging operational security and threat intelligence.

The Terms "Security" and "Risk" (10/2024)

Barnes ProjectsThis article explores the critical differences between "security" as an ideal state and "risk" as a measurable event. It emphasizes the need for precise language in cybersecurity, moving beyond the buzzword of "security" to a threat-centric approach.

FINMA RS 23/01 und Cyber Bedrohungen oder Cyber Threats (12/2024)

FINMADas FINMA Rundschreiben 23/01 versucht, die Beaufsichtigten im Management von Cyber-Risiken anzuleiten, stößt dabei aber auf fundamentale konzeptionelle Schwierigkeiten.