Jack Koziol Applied Penetration Testing Plagiarism

Thu Nov 24 03:21:23 CST 2011


Normally, this rather small amount of plagiarism may go unnoticed and/or unpublished. However, given Koziol has been found to have plagiarized for several presentations, we are documenting this material as well.

Jack Koziol of the InfoSec Institute (infosecinstitute.com) gave a presentation titled "Applied Penetration Testing". A PDF of the slide deck can be found on secwg.noc.harvard.edu.

The Plagiarism

The following table details Koziol's slides that were taken from other sources, making 17% of the material (22% if you ignore non-content slides). Given the single source used, it is clear that Koziol willfully infringed copyright and plagiarized most of the material. Given the list of ISI clients he includes on the ISI web site and other presentations, it is disturbing that so many agencies and companies have paid them for services.

Several slides appear to be written by Koziol, but are merely title (#1), about ISI (#2), biography (#3), presentation summary (#4), and closing (#29) slides. Ignoring these slides, 21% of the content of the presentation is taken from a single source without attribution.

Koziol Slide # Original Source
Slide 12 Diagram/Image from NIST Special Publication 800-42, "Computer Security". Note: while slide header says "NIST Methodology", this is not proper citation.
Slide 15 Text summarized from nmap.org
Slide 16 Text summarized from nmap.org, images his own version of ones found on same page.
Slide 17 Text summarized from nmap.org, images his own version of ones found on same page.
Slide 18 Text summarized from nmap.org, images his own version of ones found on same page.


Total Slides Plagiarised
5 / 23 (22%)



main page ATTRITION feedback