Event Related

• NoSuchCon #1 Wrap-Up – blog.rootshell.be
  So, let’s welcome the newly born conference called “NoSuchCon“. The first edition was just organized in Paris across the last three days.

Resources

• Download: Mobile Threat Report Q1 2013 – f-secure.com
  All of our past reports are also available in the “Labs” section of f-secure.com.
• Big Iron Back Door: MainTP (Part Two) – mainframed767.tumblr.com
  The is the second part of a two part article about using FTP, JCL, OMVS and Netcat to get shell access on a mainframe.
• Vulnerability Assessment of SNMP Service II – resources.infosecinstitute.com
  This is our second article in a series on vulnerability assessment of SNMP Service. In the previous article, we learned how we could set up a SNMP Service on a Linux box (Ubuntu in our case).
• The Difference Between a Vulnerability Assessment and a Penetration Test – danielmiessler.com
  There are many views on what constitutes a Vulnerability Assessment versus a Penetration Test. The main distinction, however, seems to be that some believe a thorough Penetration Test involves identifying as many vulnerabilities as possible, while others feel that Penetration Tests are goal-oriented and are mostly unconcerned with what other vulnerabilities may exist.
• Index of /talks – nosuchcon.org
  Resources for Index of Talks

Tools

• Scanning PLC Devices – PLCScan – digitalbond.com
  PLCScan is a utility that was released by scadastrangelove to help identify PLC devices.
• Rapid Web Assessments with RAWR – novainfosec.com
  A few weeks ago I had an opportunity to chat with Adam “@al14s” Byers and Tom “@c0ncealed” Moore at AIDE about an interesting new assessment tool they created called RAWR or Rapid Assessment of Web Resources.
• CSRF Tool – homakov.blogspot.ru
  I facepalm when I hear about CSRF in popular websites. (I was searching for them in the past but then realized that’s a boring waste of time).

Techniques

• Firmware Hacking: The Samsung smart TV turn – marcoramilli.blogspot.com
  I am not going to explain every step in details but I just want to give an idea on how it’s possible to perform a reverse engineering process starting from a firmware self-installable.
• Patching Java executable the easy way – netspi.com
  The process of patching a Java executable (.jar files) without the original source code has been known for a while. As I know of, currently there are two ways of doing it.
• CMS Hacking, A Look Into The ECCouncil Hack – blog.imperva.com
  Yesterday, EC Council was reported to have been compromised by a hacker called “Godzilla”.

Vendor/Software Patches

• SSL: Another reason not to ignore IPv6 – isc.sans.edu
  Currently, many public web sites that allow access via IPv6 do so via proxies. This is seen as the “quick fix”, as it requires minimum changes to the site itself. As far as the web application is concerned, all incoming traffic is IPv4.

Other News

• Security expert details how he nabbed millions of dollars from a bank – slashgear.com
  Bank heists – they’re the subject of movies, books, and, in some cases, real-world news. While not every mission goes as planned, many have managed to gain ill-gotten wealth from lax security systems, prompting banks to step up their game and stay on top of ever-changing technologies.
• California Launches Cybersecurity Task Force – govtech.com
  On May 13, California government officials and private-sector leaders met behind closed doors to discuss a comprehensive cybersecurity plan for the state — it was the beginning of the California Cybersecurity Task Force, the first state-led collaboration of its kind.

Event Related SyScan 2013 SyScan13: Revisiting Mac OS X Rootkits presentation – reverse.put.as SyScan 2013, 10th anniversary edition is over! It is a great conference and I hope it does not end here. I had lots of fun and met new interesting people. Thomas is an awesome host! It helps that I really like Singapore [...]

Event Related Syscan 2013 SyScan 2013, Bochspwn paper and slides – gynvael.coldwind.pl In our SyScan presentation, we explained the concept of kernel race conditions in interacting with user-mode memory, gave a brief rundown on how they can be identified by using CPU-level instrumentation of an operating system session, and later focused on how they can [...]

Here are information security events in North America this month:     Bsides San Antonio : May 4 in San Antonio, TX USA     Secure360 : May 13 to 15 in Minnesota USA     GovSec : May 13 to 15 in Washington DC USA     HackMiami 2013 : May 17 to 19 [...]

Event Related Notacon 10 (2013) Videos – irongeek.com These are the videos from the 10th Notacon conference held April 18th-21st, 2013. Not all of them are security related, but I hope my viewers will enjoy them anyway. Thanks to Froggy and Tyger for having me up, and to the video team: SatNights, Widget, Securi-D, Purge, [...]

Event Related Great Scott Gadgets Infiltrate 2013 – greatscottgadgets.com Michael Ossmann and Kyle Osborn presented Two-Timing Data Connectors at Infiltrate 2013. Resources Nessus Using Posh-SecMod PowerShell Module to Automate Nessus(Part1) – darkoperator.com One showed me some of the scripts they use and then it came to me why not automate Nessus from with in PowerShell. [...]

Event Related HITB Amsterdam 2013 HITB Amsterdam 2013 Day #1 Wrap-Up – blog.rootshell.be I back in Amsterdam for the third time this month. Today, it is to participate to the Hack In The Box conference. This is already the 4th one, time flies! Like the previous editions, the event is organised at the Okura hotel, [...]

Event Related CCDC WRCCDC – A Red Team Members Perspective – blog.strategiccyber.com Western Regional CCDC was pretty epic. Given the level of interest in red activity, I’d like to share what I can. So much happened, I couldn’t keep up with all of it. Web Application Defender’s Cookbook: CCDC Blue Team Cheatsheet – blog.spiderlabs.com Trustwave [...]

Event Related Blackhat Europe 2013 Arsenal Tools Event Wrap-up – toolswatch.org I finally found time to write a wrap-up about the activities of the Arsenal Tools Event during the last session of Blackhat Amsterdam Europe 2013. IPv6 Focus Month: IPv6 over IPv4 Preference – isc.sans.edu Initially, most IPv6 deployments will be “Dual Stack”. In this [...]

Here are information security events in North America this month:   BSides Iowa : April 6 to 7 in Iowa, USA   BSides Rochester : April 6 in New York, USA   GRC Summit :April 9 to 11 in Boston MA, USA   Bsides Orlando : April 13 to 14 in Orlando Florida USA   [...]