Here are information security events in North America this month: Hackfest Optimized: November 4 to November 5 in Quebec BSides DFW: November 5 to November 6 in Irving     BSides Atlanta: November 4 in Atlanta   BSides Delaware: November 1 to November 12 in New Castle   SC Congress: November 16 in New York [...]

Events Related Crack Me If You Can DefCon 2011 Insidepro team – contest.korelogic.com First of all, I must say that this year’s contest was a big improvement over last year. Not that last year was boring, far from that, but the feedbacks given last year were well understood and rectified this year. The weighted points [...]

Events Related DefCon 2011 Leftover notes and resources five weeks after. Crack Me If You Can teams – contest.korelogic.com Crack Me If You Can InsidePro – contest.korelogic.com Crack Me If You Can team john users – contest.korelogic.com The Art of Exploiting Lesser Known Injection Flaws Revealed At BlackHat – penetration-testing.7safe.com The audience at Black Hat, Las Vegas [...]

Events Related OWASP AppSec 2011 Capture The Flag briefings Capture The Flag – www.appsecusa.org/ctf.html AppSecUSA CTF! Another Write Up – notsosecure.com Resources Whitepaper “Python Arsenal For Reverse Engineering” - dsecrg.com This whitepaper (beta release) is a collection of various Python engines, extensions, libraries, shells, that aids in the job code for understanding, analyzing and sometimes breaking. [...]

Events Related Defcon 19  Quals For the third year, I competed with team Shellphish in the Defcon quals. We pulled through with some amazing points at the end to finish in 8th place. My successful contributions, however, were really only with respect to Forensics 100 and 300 Defcon 19 Quals Forensics 100 and Forensics 300 [...]

Events Related Outerzone 2011 Hacker Con – irongeek.com The following are videos of the presentations from the Outerzone 2011 hacker conference. Resources web.config Security Analyzer This little beauty let’s you feed in a Web.config then it comes back and tells you everything you’ve done wrong in the world of security configuration. web.config Security Analyzer – [...]

Events Related ShmooCon CTF 2011 Ghost In the Shellcode – ghostintheshellcode.com Congratulations to ppp for winning the second GitS CTF! The game board as it was when the contest ended is now live, though answers are not accepted, nor are any of the exploitable services running. Just like the real thing – blog.uncommonsensesecurity.com The goal is [...]

Events Related ShmooCon 2011 Getting to ShmooCon each year is always challenging (as is trying to get home). Mother Nature seems to enjoy disrupting the travel to and from the conference, which is held in Washington, D.C in January or February of each year. ShmooCon 2011 – intrepidusgroup.com ShmooCon 2011 Conference Wrap Up – blog.tenablesecurity.com [...]

Events Related Shmoocon 2011 ShmooCon 2011: Team Joch vs. Android: The Final Showdown – blog.c22.cc Shmoocon 2011: Printers gone wild! – blog.c22.cc ShmooCon 2011: Attacking 3G and 4G mobile telecommunications networks – blog.c22.cc ShmooCon 2011: Defeating mTANS for profit – blog.c22.com ShmooCon 2011: URL enlargement: Is it for you? – blog.c22.cc Resources Train Like You [...]

Events Related: A Shmoocon Preview – blogs.macafee.com At about a third of the size of a larger conference like Black Hat, it’s much easier to talk to the speakers without fighting with a crowd. Past years have had good presentations on mobile phone security and this year is no exception. Black Hat DC 2011 We are [...]