Via: Irongeek
Links: http://www.irongeek.com/i.php?page=videos/aide2013/mainlist
At this point I had to leave for Notacon to record their talk and was not there to run the slide capture rig for AIDE. I shanghaied some volunteers into recording, and while they did not get the slide rig working, we have the presenter and slides on camera. Thanks for filling in.
Boring eForensic Science Items - Brian Martin
Hackers in Unganda: A Documentary (Kickstarer Project) - Jeremy Zerechak
Small Businesses Deserve Security Too - Frank Hackett
Help from the helpdesk - Mick Douglas (@bettersafetynet)
Malware Analysis Triage for n00bs - Grecs (@Grecs)
CCDC and Industry - James L. Siegel Jr. (WolfFlight)
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/notacon10/mainlist
These are the videos from the 10th Notacon conference held April 18th-21st, 2013. Not all of them are security related, but I hope my viewers will enjoy them anyway. Thanks to Froggy and Tyger for having me up, and to the video team: SatNights, Widget, Securi-D, Purge, Bunsen, Fry Steve and myself (at least that is who it was last year, if you got he names for 2013 let me know).
Track 1
Guns & Privacy - Deviant Ollam
Domestic Preparedness (the zombie Apocalypse is nigh upon us) - Illustrious Niteshad & megalos
DIY Neuroscience, EMGs, EEGs, and other recordings - meecie
Hacking Your Ability to Communicate - kadiera
Lasers for Fun! Lasers for Science. Lasers for Security! - Ethan Dicks
Video Everywhere! aka The Personal Distributed HD Video Network - Woz
How We Learned Security from Steve - ghostnomad, ghostnomadjr, knuckles & micronomad
Are we getting better? – Hacking Todays Technology - David Kennedy
Critical Making - Garnet Hertz
DC to Daylight: A whirlwind tour of the radio spectrum, and why it matters. - Stormgren
Skeleton Key: Transforming Medical Discussions Through 3D Printing - KK Pandya
Youthful Exploits of an early ISP - Dop & KevN
Whose Slide Is It Anyway? - nicolle @rogueclown neulist
Track 2
I Forked the Law and We All Won - Fork The Law
Make me Babyproof! - Gina “the kat” Hoang
You Keep A-Knockin’ But You Can’t Come In - grap3_ap3
Encryption for Everyone - Dru Streicher (_node)
How I Became an iOS Developer for Fun and Debt - Mark Stanilav
Creating professional glitch art with PoxParty - Jon Satrom & Ben Syverson
Let’s Go CSRF’n Now! - grap3_ap3
Bad Games Arcade - Jake Eliott
The Winamp Imperative - Yoz (sorry, audio died at 6:09)
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/introduction-to-html-injection-htmli-and-cross-site-scripting-xss-using-mutillidae
New Video From Jeremy Druin:
This video covers the basics of injecting HTML into sites with vulnerabilities in which injected code is placed inline with intended code and executes in the users browser. The injected HTML in this video is a fake login box that posts the user username and password to a capture data page (in the NOWASP Mutillidae application).
Later the same vulnerability is used to inject cross site scripting attack that hooks the users browser with a Beef Framework script (hook.js) given an attacker control of the users browser.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/introduction-to-pen-testing-simple-network-management-protocol-snmp
New Video From Jeremy Druin:
The Simple Network Management Protocol (SNMP) is used on networked devices to read, write, and update device configuration remotely. Windows desktop systems typically do not run SNMP services by default but these can be enabled for testing. Server operating systems often run snmp services by default as do network devices such as routers, printers, special purpose equipment, switches, and firewalls.
In this video, a Windows XP box has SNMP enabled to act as a test target. A Backtrack 5 R3 host is used to perform assessment. The video progresses through host discovery, port identification, service verification, finding community strings, dumping device configuration, and altering device configuration.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/bro-ids-and-the-bro-network-programming-language
Liam Randall, a developer on the Bro team, and the guy that supplies cherry flavored refreshment at many cons, asked me to post his Shmoocon 2013 video. Since he said there would be more videos to come, I decided to make a page for them. Go check out the project at: http://www.bro-ids.org/
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/basics-of-using-sqlmap-jeremy-druin-webpwnized
This is the 8th in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae (or other tools) for the Kentuckiana ISSA. This one covers SQLMap.
Via: Irongeek
http://www.irongeek.com/i.php?page=security/asareaper-grab-configs-from-multiple-cisco-devices-over-ssh
Simple script I wrote for backing up Cisco ASAs. Does it all over SSH, and may serve as example code for other projects.
Via: Know the Network
Java Patch Released As you may have heard there is a significant security vulnerability in Java that is currently being exploited widely on the internet. This bug can be used to silently install keyloggers or other types of malicious software from compromised websites. Oracle has released a patch that you should install as soon as
Continue Reading
Via: Know the Network
I consider myself to be fairly well informed on issues concerning data security and privacy and I found this to be absolutely astonishing. Could your Multi-function Copier be on the of the most high value data targets in your organization? I discovered this 2010 CBS News Investigative report this morning via my friend @pulrich. It’s
Continue Reading
Via: Know the Network
If you’ve reached this page via Google you deserve an attaboy. Your instincts are correct – the “bill” you received from DNSsvc.com is not a bill. I’ve highlighted in orange on the image below the portion that keeps them from being sued but is still deceptive marketing. Pretty shady stuff. Hope I helped someone save
Continue Reading
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/sql-server-hacking-jeremy-druin-webpwnized
This is the 7th in a line of classes Jeremy Druin will be giving on pen-testing
and web app security featuring Mutillidae (or other tools) for the Kentuckiana
ISSA. This one covers SQL Server Hacking.
Via: Know the Network
I’m often asked about trustworthy methods to destroy hard-drives, backup tapes, and external drives so when I heard about this service I just had to share. The United Cerebral Palsy of Arkansas offers media destruction services. It’s a full service offering and not only do you get great value you also know that you helped
Continue Reading
Via: sp0rus
<iframe width="560" height="315" src="http://www.youtube.com/embed/PbOV1V-dL3c" frameborder="0" allowfullscreen></iframe> Video from my first strongman competition in August. Looking forward to many more in the future.<div class="feedflare"> <a href="http://feeds.feedburner.com/~ff/SquaringCircles?a=b3Zl_nFujIs:8GNz1_2t0MM:yIl2AUoC8zA"><img src="http://feeds.feedburner.com/~ff/SquaringCircles?d=yIl2AUoC8zA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/SquaringCircles?a=b3Zl_nFujIs:8GNz1_2t0MM:V_sGLiPBpWU"><img src="http://feeds.feedburner.com/~ff/SquaringCircles?i=b3Zl_nFujIs:8GNz1_2t0MM:V_sGLiPBpWU" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/SquaringCircles?a=b3Zl_nFujIs:8GNz1_2t0MM:gIN9vFwOqvQ"><img src="http://feeds.feedburner.com/~ff/SquaringCircles?i=b3Zl_nFujIs:8GNz1_2t0MM:gIN9vFwOqvQ" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/SquaringCircles?a=b3Zl_nFujIs:8GNz1_2t0MM:7Q72WNTAKBA"><img src="http://feeds.feedburner.com/~ff/SquaringCircles?d=7Q72WNTAKBA" border="0"></img></a> <a href="http://feeds.feedburner.com/~ff/SquaringCircles?a=b3Zl_nFujIs:8GNz1_2t0MM:qj6IDK7rITs"><img src="http://feeds.feedburner.com/~ff/SquaringCircles?d=qj6IDK7rITs" border="0"></img></a> </div><img src="http://feeds.feedburner.com/~r/SquaringCircles/~4/b3Zl_nFujIs" height="1" width="1"/>
Via: Know the Network
Many Facebook page owners are discovering the importance of building communication with customers and supporters on channels you control, namely Websites and Email Campaigns. (I’ll say a few more words about this toward the end of the post.) If you are new to managing email lists and sending campaigns here are a few platforms to
Continue Reading
Via: Irongeek
Another video from Jeremy Druin.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/introduction-to-buffer-overflows-from-issa-ky-workshop-6
Mutillidae: Using ettercap and sslstrip to capture login
This video by webpwnized (@webpwnized) reviews how to intercept web communications using ettercap and intercept web traffic that is supposed to be protected with SSL using SSLStrip.
Mutillidae SQL Injection via AJAX request with JSON response
This video by webpwnized (@webpwnized) covers pen-testing an SQL Injection vulnerability that occurs in an AJAX request made in the background. The response from the server is JSON. Since AJAX requests and regular request work the same way (since they both follow the rules of the HTTP protocol), the AJAX request can be pen-tested using the same tools and tecniques used with the more traditional requests. The SQL Injection flaw is first discovered then used to pull a list of the tables in the database along with the columns for the target table. Once the target is identified, the defect is used to pull a list of the username and password fields.
Introduction to buffer overflows from ISSA KY workshop 6
This recording is from the Kentucky ISSA Workshop #6 from the November 2012 meeting. In part 5, using Metasploit was covered. In this workshop, buffer overflow vulnerabilities were examined more closely to see how Metasploit exploits might be written. A custom program is written with a known buffer overflow and compiled without the stack canaries or non-executable stack. Also ASLR is disabled on the Ubuntu 12.04 testing host. The program is fuzzed to determine an overflow exists and decompiled with GDB to look at the program logic more closely. Python scripts are used to generate exploits that get closer to over-writing the return pointer with a user supplied value. Once the buffer overflow is identified and the size of the buffer found, the exploit development begins. A custom exploit is developed to inject shellcode into the buffer, determine a reasonable memory address in which to jump, and a root shell gained.
Via: Irongeek
PhreakNIC 16 Day One Videos Posted
Here are the videos from day 1 of PhreakNIC 16. Big thanks to Ben the Meek and the rest of the video crew.
Welcome to PhreakNIC - Warren Eckstein
Magnets, How Do They Work? - Michael Snyder
Own the Network – Own the Data - Paul Coggin
Something about middleware - Douglas Schmidt
Homebrew Roundtable - Scott Milliken, Erin Shelton
Repurposing Technology - Kim Smith & Kim Lilley
Via: Know the Network
Every natural disaster these days proves how useful Twitter in particular has become. The problem of course is these disasters usually mean your internet service and/or mobile data service is offline. So how do you stay connected and informed? Twitter via Text Messaging (SMS) You’ve probably heard that Twitter was initially built as an SMS
Continue Reading
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/skydogcon2/mainlist
Most of the talks are up, full post coming soon.
Via: Know the Network
I’m saying goodbye to my TV service. I’m an early adopter in many arenas of technology but I’ve been hesitant when it comes to monkeying with my flat screen HD. For a few months I’ve been pondering cutting the cord and after some input from my Twitter community and research I’m ready to make the
Continue Reading
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/derbycon2/mainlist
Hi all. Expect these to come out in phases.
Opening Ceremony
HD Moore – The Wild West
Dan Kaminsky – Black Ops
Mudge – Cyber Fast Track; from the trenches
Jayson E. Street – Securing the Internet: YOU’re doing it wrong (An INFOSEC Intervention)
Jason Scott – Rescuing The Prince of Persia from the sands of time
Dave Marcus – 2FA-Enabled Fraud: Dissecting Operation High Roller
Rafal Los – House of Cards
Rob Fuller / Chris Gates – Dirty Little Secrets Part 2
Chris Hadnagy – Nonverbal Human Hacking
Rick Farina: The Hacker Ethos meets the FOSS ethos
Brent Huston – Info overload..Future shock.. IBM & nature of modern crime
Ian Amit – SexyDefense – the red team tore you a new one. Now what?
egyp7 – Privilege Escalation with the Metasploit Framework
Larry Pesce / Darren Wigley – Hacking Survival: So. You want to compute post-apocalypse?
James Arlen – Doubt – Deceit -Deficiency and Decency – a Decade of Disillusionment
Carlos Perez – DNS Reconnaissance
Sam Gaudet: Pentesting for non-pentesters…through virtual machines
Ryan Linn – Collecting Underpants To Win Your Network
Jerry Gamblin: is it time for another firewall or a security awareness program?
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#how-to-upgrade-to-latest-mutillidae-on-samurai-wtf-2
Jeremy Druin has a new video:
This video covers upgrading the default version of NOWASP (Mutillidae) which comes with SamuraiWTF 2.0 with the latest available version. On this particular version of SamuraiWTF 2.0, NOWASP (Mutillidae) 2.1.20 was installed in the ISO. The latest version of NOWASP (Mutillidae) available at the time of this video was 2.3.7. In the video, the hosts file responsible for activating the links to the "target" web applications was modified so the default web applications would work. Also, the "samurai" start up script is reviewed to show why the LiveCD version of Samurai includes working web app targets but the installed version requires the targets be "activated". The video then covers how to upgrade the existing default installation of NOWASP (Mutillidae) with the latest available version. Additionally, the video discusses how to run the default version and latest version of NOWASP (Mutillidae) side-by-side or replace the existing installation with the latest version.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#installing-latest-mutillidae-on-samurai-wtf-version-2
Jeremy Druin has a new video:
Samurai WTF is an excellent platform for web pen testing. A very large number of tools are already included. An older version of NOWASP Mutillidae comes pre-installed. This video covers installing the latest version on Samurai WTF 2.0. Installation requires downloading the latest verion of NOWASP Mutillidae, unzipping the Zip file which contains a single folder named "mutillidae", and placing the "mutillidae" folder into /var/www directory. Configuration is done by opening the /var/www/mutillidae/classes/MySQLHandler.php file and changing the default MySQL password from blank empty string to "samurai". Starting the project is done by browsing to http://localhost/mutillidae and clicking the Reset-DB button on the menu bar.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/intro-to-metasploit-jeremy-druin
This is the 5th in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers Metasploit.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/intro-to-metasploit-jeremy-druin
This is the 5th in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers Metasploit.
Via: Irongeek
Jeremy Druin has two new Mutillidae/Web Pen-testing videos
Setting User Agent String And Browser Information
Introduction to user-agent switching: This video uses the Firefox add-on "User-Agent Switcher" to modify several settings in the browser that are transmitted in the user agent string inside HTTP requests. Some web applications will show different content depending on the user agent setting making alteration of the settings useful in web pen testing.
Walkthrough Of CBC Bit Flipping Attack With Solution
This video shows a solution to the view-user-privilege-level in Mutillidae. Before viewing, review how XOR works and more importantly that XOR is communicative (If A xor B = C then it must be true that A xor C = B and also true that B xor C = A). The attack in the video takes advantage that the attacker knows the IV (initialization vector) and the plaintext (user ID). The attack works by flipping each byte in the IV to see what effect is produced on the plaintext (User ID). When the correct byte is located, the ciphertext for that byte is recovered followed by a determination of the correct byte to inject. The correct value is injected to cause the User ID to change.
Mutillidae is available for download at http://sourceforge.net/projects/mutillidae/. Updates about Mutillidae are tweeted to @webpwnized along with announcements about video releases.
Via: Irongeek
Jeremy Druin has two new Mutillidae/Web Pen-testing videos
Setting User Agent String And Browser Information
Introduction to user-agent switching: This video uses the Firefox add-on "User-Agent Switcher" to modify several settings in the browser that are transmitted in the user agent string inside HTTP requests. Some web applications will show different content depending on the user agent setting making alteration of the settings useful in web pen testing.
Walkthrough Of CBC Bit Flipping Attack With Solution
This video shows a solution to the view-user-privilege-level in Mutillidae. Before viewing, review how XOR works and more importantly that XOR is communicative (If A xor B = C then it must be true that A xor C = B and also true that B xor C = A). The attack in the video takes advantage that the attacker knows the IV (initialization vector) and the plaintext (user ID). The attack works by flipping each byte in the IV to see what effect is produced on the plaintext (User ID). When the correct byte is located, the ciphertext for that byte is recovered followed by a determination of the correct byte to inject. The correct value is injected to cause the User ID to change.
Mutillidae is available for download at http://sourceforge.net/projects/mutillidae/. Updates about Mutillidae are tweeted to @webpwnized along with announcements about video releases.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/host-vulnerability-assessment-with-nessus-nexpose-and-metasploitable-2-from-jeremy-druin
This is the 4th in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers Nessus, NeXpose and Metasploitable 2.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/host-vulnerability-assessment-with-nessus-nexpose-and-metasploitable-2-from-jeremy-druin
This is the 4th in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers Nessus, NeXpose and Metasploitable 2.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#using-command-injection-to-gain-remote-desktop-on-windows
Here are two more videos from Jeremy Druin (@webpwnized):
Using Command Injection To Gain Remote Desktop On Windows
How To Exploit Metasploitable 2 With Nmap Nexpose Nessus Metasploit
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#using-command-injection-to-gain-remote-desktop-on-windows
Here are two more videos from Jeremy Druin (@webpwnized):
Using Command Injection To Gain Remote Desktop On Windows
How To Exploit Metasploitable 2 With Nmap Nexpose Nessus Metasploit
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=security/raspberry-pi-i2p-svartkast
I updated the article a little to show how to set up a SSH tunnel through the I2P darknet. Expect to see a few more Raspberry Pi posts as I prep up for my talks at Bsides Cleveland and OISF.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=security/raspberry-pi-i2p-svartkast
I updated the article a little to show how to set up a SSH tunnel through the I2P darknet. Expect to see a few more Raspberry Pi posts as I prep up for my talks at Bsides Cleveland and OISF.
Via: Know the Network
In a world where everyone is rushing to be the first to break news its time we decide that being right is more important than being quick. While much has been said concerning CNN and Fox reporting errors concerning the Healthcare ruling last week I’d like to examine a local example from this past weekend [...]
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=reviews/ius-mba-program#ius-school-of-business-ferpa
Again, not security related, but could be of interest to some. Next post I swear will be security related.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=reviews/ius-mba-program#ius-school-of-business-ferpa
Again, not security related, but could be of interest to some. Next post I swear will be security related.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/traceroute-and-scapy-jeremy-druin-webpwnized
This is the 3rd in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers Traceroute and Scapy.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/aide2012/mainlist
Recorded at AIDE 2012. Big thanks to Bill Gardner (@oncee) for having me out to record.
Anti-Forensics: Occult Computing
Adrian Crenshaw
Out of Character: Use of Punycode and Homoglyph Attacks to Obfuscate URLs for Phishing
Adrian Crenshaw
An Introduction to Traffic Analysis: A Pragmatic Approach
Jon Shipp
Pen Testing Web 2.0: The Client
Jeremy Druin
Breaking into Security
Frank J. Hackett and Justin Brown
Sabu the Hacker: The capture, the crimes, the damage done, the slip, the apprehension, and the fallout.
Dr. Marcus Rogers
Jill McIntyre
Boris Sverdlik
Ronald Layton, U.S. Secret Service
BNAT Hijacking: Repairing Broken Communication Channels
Jonathan Claudius
Setting up BackTrack and automating various tasks with bash scripts
Lee Baird
Going on the Offensive - Proactive Measures in Securing YOUR Company
Dave Kennedy
Via: Irongeek
Link:http://www.securitybsides.com/w/page/27427415/BSidesCleveland
Here is another event I will be speaking at.
What: BSidesCleveland
When: Friday, July 13, 2012
Where: Embassy Suites Cleveland - Rockside
Address: 5800 Rockside Woods Boulevard, Independence 44131
Cost: Free (as always!)
Register at:
http://www.securitybsides.com/w/page/27427415/BSidesCleveland
Submit to CFP at:
http://www.securitybsides.com/w/page/53552319/BSidesClevelandCFP
Via: Know the Network
I confess that its been several years since I’ve been tethered to Outlook so when I went to create an HTML signature I found that the signature advanced editor had been removed. Ack! Yes Rich Formatted text would get me close but if you want more control I recommend diving into creating an HTML signature. [...]