Episode178

From Paul's Security Weekly
Revision as of 21:32, 4 December 2009 by Larry (Talk | contribs)

Jump to: navigation, search
Palo Alto Networks
Tenable Network Security
The SANS Institute
Pwnie Express
Black Hills Information Security
BlackSquirrel
Onapsis

Sponsors

  • Tenable Network Security - This episode sponsored by Tenable network security. Tenable is a developer of enterprise vulnerability, compliance and log management software, but most notably the creators of Nessus, the worlds best vulnerability scanner. Tenable Security Center software extends the power of Nessus through reporting, remediation workflow, IDS event correlation and much more. Tenable also offers a Nessus Professional Feed to detect vulnerabilities in your network today! Tenable – Unified Security Monitoring!
  • Core Security - This episode is also sponsored by Core Security Technologies, helping you penetrate your network. Now version 10.0 with WiFi-fu good to go! Rock out with your 'sploit out! Listen to this podcast and qualify to receive a 10% discount on Core Impact, the worlds best penetration testing tool.
  • Trustwave Spiderlabs - Trustwave's SpiderLabs - providing advanced information security services to planet Earth. Visit them online at trustwave.com/spiderlabs!

Shameless Plugs & General Announcements

PaulDotCom Security Weekly - Episode 178 - For Friday December 4th, 2009

  • Sign up to get a free Website HealthCheck report from Cenzic to see how you can protect your Website from hacker attacks. As part of the Cenzic HealthCheck program, Cenzic will scan your Websites for “holes” that hackers can exploit and provide you with a detailed encrypted PDF report to you in 2-4 businness days. The report will contain:
  • An assessment summary of your Website’s “holes” (security flaws) and easy-to-read severity charts,
  • A prioritized listing of your most vulnerable Website locations (applications), and
  • A description of the security flaws and directions on ways to eliminate them.
For more information, please visit http://www.cenzic.com/2009HClaunch_PaulDotCom
  • Syngress Publishing - Quench your thirst for knowledge at syngress.com and use the referral link or the discount code "PaulDotCom" at checkout to save 20% on all security book titles!
  • Defensive Intuition - We are also sponsored by Defensive Intuition. Defensive Intuition is the provider of many security consulting services: penetration testing, physical assessments, and social engineering. Defensive Intuition: Owning your boxes, 7 ways to Sunday!
  • Intern challenge #1 was a success!
  • QuahogCon Call for Papers - QuahogCon is a Southern New England conference for the hacker culture in all forms, and is looking for presentations!

Special Guest: Chris Brenton is Your source for invisible security bug spray

Chris Brenton is a private consultant and is one of the founding members of the initial Honeynet Project, one of the original Internet Storm Center handlers, and started up one of the first managed security ISP's. Along with being a published author, Chris is responsible for maintaining all of the material in the SANS Perimeter Protection In-Depth course. In his spare time, Chris teaches rally and high speed off road security driving where he can be found teaching students to make their side window the front of the car.

Questions:

  1. How did you get your start in information security?
  2. Tell us about you blog, how did you get started in blogging and what kind of things did you write about early on?
  3. Tell us about Packet Decode
  4. What have been some of your website challenges/brain teasers? What's been your favorite so far?

Packet Decode for the iPhone

From the Packet Decode website:

Packet Decode is a reference guide for anyone that needs to decode Internet Protocol (IP) network traffic. If you are a network engineer, intrusion analyst or ethical hacker, this app will make your life a whole lot easier. How many times have you known what header field you wanted to look at, but could not remember the syntax to get your decoding tool to present the data properly? Tired of having to dig through RFCs or online docs? Tire no longer!

tool walk-through & screen caps

Tech Segment: Workshop fun

Stories For Discussion

  1. GOOGLE DNS SERVICE - [The Intern] - So google is going to do DNS services to make the inter-tubes faster. Will it work? HD Moore did some investigation and its not looking quite so bad... http://blog.internetnews.com/skerner/2009/12/is-google-public-dns-safe-look.html
  2. So, who's to blame? - [Larry] - Restaurant sues POS vendor because their systems get hacked and CC numbers stolen, resulting in $50K in losses. So, who is to blame?
  3. Backtrack 4 and Nessus 4.2 - [pauldotcom] - First off, I want to compliment kriggins on a job welld one keeping this updated. Now, I haven't testing this process, but these instructions tell you how to setup a persistant bt4 install, install nessus, and include tycrypt encrypted volumes. However, I do want to point out that you can cut 40-50% of the work to do this by buying an 8GB thumb drive and using the BT4 "install.sh" desktop icon to create the thumb drive. This gives a fully writable linux distro, which is much cleaner, less prone to error, and gives you more usable space. Lets face it, if you are going to perform updates to BT4 and run Nessus scans, you need all the space you can get.
  4. Sprint, Feds and GPS, oh My! - [Larry] - An interesting take on some GPS tracking stuff that we've been talking about. How about the Feds doing 8 million requests for GPS locations of customers? It is unknown about the warrant stance. Apparently the web interface is as easy as plugging in the phone number of the subscriber, and out pop the results. Wow, my question is, where does one find this website, and can we audit their passwords?
  5. Nessus 4.2 Released! - [pauldotcom] - Any questions? Comments? Thoughts? Suggestions?
  6. Metasploit with free NeXpose Commmunity edition - [Larry] - An interesting turn of events, which intern Darren and I were just discussing las night. I haven't had a chance to use it yet. Let's discuss the implications.
  7. Who's the BOSS? - [Larry] An english version of the JBOSS hacking paper. A great read, but of course, it comes right after discovering a JBOSS MX console after a pentest engagement has closed. So, anyone know where I can get me a copy of redteam.war?
  8. Stop playing with your tree! - [Larry] - An interesting tool from Didier Stevens, on creating processes with a different one as a parent - which inherits full rights of the parent. IE, with admin rights, create a process with lsass.exe as a parent which will inherit SYSTEM. All using documented API calls.

Other Stories Of Interest