Episode202

From Security Weekly Wiki
Revision as of 18:53, 15 July 2010 by Byte bucket (talk | contribs)
Jump to navigationJump to search


Sponsors

  • Tenable Network Security - This episode sponsored by Tenable network security. Tenable is a developer of enterprise vulnerability, compliance and log management software, but most notably the creators of Nessus, the worlds best vulnerability scanner. Tenable Security Center software extends the power of Nessus through reporting, remediation workflow, IDS event correlation and much more. Tenable also offers a Nessus Professional Feed to detect vulnerabilities in your network today! Tenable – Unified Security Monitoring!
  • Core Security - This episode is also sponsored by Core Security Technologies, helping you penetrate your network. Now version 10.0 with WiFi-fu good to go! Rock out with your 'sploit out! Listen to this podcast and qualify to receive a 10% discount on Core Impact, the worlds best penetration testing tool.
  • Trustwave Spiderlabs - Trustwave's SpiderLabs - providing advanced information security services to planet Earth. Visit them online at trustwave.com/spiderlabs!

"Thanks to our sponsors Tenable network security, the developer of enterprise vulnerability, compliance and log management software, but most notably the creators of Nessus, the worlds best vulnerability scanner. Tenable Security Center software extends the power of Nessus through reporting, remediation workflow, IDS event correlation and much more."

"Core Security Technologies, helping you penetrate your network. Rock out with your 'sploit out! Listen to this podcast and qualify to receive a 10% discount on Core Impact, the worlds best penetration testing tool. "

"and Cenzic, create a Hailstorm for your web applications! Sign up for a free trial of the Hailstorm software or scan remotely with their new online service to keep you web applications in check."

Now, Pull up a packet capture, pour a beer, and give the intern control of your botnet...."

Shameless Plugs & General Announcements

Are you ready?

Ready for what?

We're going to use the word "podcast" as a verb.

Oh great, here we go again...

"ARE YOU READY TO PODCAST?!?!?!"

PaulDotCom Security Weekly - Episode 202 - For Thursday July 15, 2010.

  • Click here to register for an exclusive webcast from John & Paul titled For the Last Time: The Internet is Evil. This webcast will help you understand the attacks that are being launched against you and offer some advice to stop them. Can they be stopped? Most likely not, but we'll offer up some ideas to help you deal with it which include redefining your policies, and drinking, heavy, heavy, drinking.
  • It is finished... The Official Metasploit class from John Strand and Ed Skoudis is now complete. Two full days of Metasploit insanity. Want 25% off? Use IN580 when you register for vLive.
  • John Strand will be teaching SANS 560: Network Penetration Testing at SANS Virginia Beach August 29th - Sept 3. Come get shell and crabs with strandjs.

Interview: Command Line Kung-fu Hosts

Ed Skoudis Hal Pomeranz Tim Medin

  1. How did you get your start in information security?

Stories For Discussion

  1. New Windows USB vuln a.k.a. Look ma, no autorun.inf - New malware, discovered by Belarusian AV vendor VirusBlokAda, uses a previously unknown vulnerability to propagate itself using a shortcut (.lnk file) on USB storage device. Viewing the shortcut's icon in Windows Explorer (or other file managers) is all that is needed to trigger the malicious code.
  2. Hottie or Naughty? - [Larry] - Just goes to show that sex sells. Put a picture of an attractive woman on a fake facebook page and have some intelligence behind it and folks fall all over it. People have been doing this for years…Is this the Evil part of the Evil twin attack? Surprisingly, a number of security people (ahem…yes, I know most of them follow everyone), at least followed, if not fell for the game…
  3. Usb coffee warmer… - [Larry] - Now we have to be mindful of every device we plug in…because we could have a hardware trojan. This isn't just an add on function, this is rewriting the VID/PID to report as the original device, exploiting the ORIGINAL trust of the device. Now, anyone know where I can get a device with user programmable VID/PID?
  4. Wireless presenters - [Larry] Josh Wright has ben here (with a different device), and PHUKED is a similar project. A reverse engineer of the wireless presenter reveals that the receiver WILL take input of other keystrokes…and mouse input. Unplug your wireless presentation remote, or don't use one at all.
  5. Blind Elephant - [Larry] - A tool to be released at BlackHat for fingerprinting web application and plugin versions to determine their update status. Certainly this will be used by the bad guys to fingerprint for attacks, but how about using it in a repeatable fashion in your own environment, as most web apps don't have an auto update and notification feature…
  6. Firefox Security Test Add-on was Backdoored - A backdoor has bee discovered in teh Mozilla Sniffer add-on that is/was included in the Web Application Security Penetration Testing collection — whenever a login form was submitted, the add-on secretly sent a copy of the URL, password and other details to an IP address presumably controlled by the malicious author.

Other Stories of Interest