Event Related IPv6 Focus Month IPv6 Focus Month: What is changing with DHCP – isc.sans.edu Among the different methods to configure IPv6 addresses, most managed networks will likely stick with DHCP. DHCPv6 however is a bit different then DHCPv4. We will summarize here some of the basic differences between DHCPv4 and DHCPv6. IPv6 Focus Month: [...]

Event Related DEFCON 20 DEFCON 20: Day 2 Interesting Presentations – it.toolbox.com Day 2 of DEFCON, and things are jamming. There is a tremendous amount of energy at this 20 year celebration of the Con. People are behaving, and the talks are pretty interesting. Defcon Day 2 Talk Notes – The DCWG Debriefing – novainfosecportal.com [...]

Event Related Black Hat USA 2012 BlackHat USA 2012: Day One – it.toolbox.com Carrying on with my tradition of posting my notes from each session I attend… I present to you the first day of BlackHat Briefings 2012. Black Hat Day 1 Talk Notes – STIX: The Structured Threat Information eXpression – novainfosecportal.com This Turbo [...]

Event Related Pwn2Own Lesson From Pwn2Own: Focus On Exploitability – darkreading.com The Pwn2Own contest earlier this month at the CanSecWest Conference showed off the speed with which knowledgeable security professionals can code exploits for known vulnerabilities. On the failings of Pwn2Own 2012 – scarybeastsecurity.blogspot.com This year’s Pwn2Own and Pwnium contests were interesting for many reasons. [...]

Event Related CanSecWest CanSecWest evolving – blog.securiteam.com Let me say, right off the top, that I love CanSecWest. I am tired of “vendor” conferences, where you pay outrageous fees for the privilege of sitting through a bunch of sales pitches. At least CanSecWest has real information, as opposed to virtual information. CanSecWest Day 1 Pen [...]

Here are information security events in North America this month: Hackfest Optimized: November 4 to November 5 in Quebec BSides DFW: November 5 to November 6 in Irving     BSides Atlanta: November 4 in Atlanta   BSides Delaware: November 1 to November 12 in New Castle   SC Congress: November 16 in New York [...]

Events Related Crack Me If You Can DefCon 2011 Insidepro team – contest.korelogic.com First of all, I must say that this year’s contest was a big improvement over last year. Not that last year was boring, far from that, but the feedbacks given last year were well understood and rectified this year. The weighted points [...]

Events Related DefCon 2011 Leftover notes and resources five weeks after. Crack Me If You Can teams – contest.korelogic.com Crack Me If You Can InsidePro – contest.korelogic.com Crack Me If You Can team john users – contest.korelogic.com The Art of Exploiting Lesser Known Injection Flaws Revealed At BlackHat – penetration-testing.7safe.com The audience at Black Hat, Las Vegas [...]

Events Related OWASP AppSec 2011 Capture The Flag briefings Capture The Flag – www.appsecusa.org/ctf.html AppSecUSA CTF! Another Write Up – notsosecure.com Resources Whitepaper “Python Arsenal For Reverse Engineering” - dsecrg.com This whitepaper (beta release) is a collection of various Python engines, extensions, libraries, shells, that aids in the job code for understanding, analyzing and sometimes breaking. [...]

Events Related Defcon 19  Quals For the third year, I competed with team Shellphish in the Defcon quals. We pulled through with some amazing points at the end to finish in 8th place. My successful contributions, however, were really only with respect to Forensics 100 and 300 Defcon 19 Quals Forensics 100 and Forensics 300 [...]