Security Tools

Week 30 In Review – 2014


BSides Cleveland 2014 Videos –
These are the videos from the Bsides Cleveland conference. You can watch and download the videos from here.
Dispelling Confusion and Myths: iOS Proof-of-Concept –
A quick POC demonstrating how File Relay and other services can be abused to dump a significant amount of personal data from an iOS device wirelessly, and […]

Week 29 In Review – 2014


BGA talk slides –
Marshall twitted his BGA talk slides on twitter. You can download the pdf from here.
Building a Modern Security Engineering Organization –
Continuous deployment and the DevOps philosophy have forever changed the ways in which businesses operate. This talk with discuss how security adapts effectively to these changes.
Car Hacker’s Handbook –
Here you can […]

Week 28 In Review – 2014


Vendor Checklist app / Trust Metric app –
ISECOM (the Institute for Security and Open Methodologies) began with the release of the OSSTMM, the Open Source Security Testing Methodology Manual. It was a move to improve how security was tested and implemented.
Dumping Data from Memcached Servers –
Memcached servers provide a dynamic, distributed memory object caching […]

Week 27 In Review – 2014

Black Hat USA Briefings Giveaway
Enter to win an Black Hat USA 2014 Briefings ticket worth
$2,2000 from Infosec Events
Events Related

School on Applications of Open Spectrum and White Spaces Technologies – Schedule –
ICTP School on Applications of Open Spectrum and White Spaces Technologies – 2014 workshop schedule is available here. You can download all of the […]

Week 25 In Review – 2014


Circle City Con 2014 Videos –
These are the Circle City Con 2014 videos. You can watch and download all of the recordings from here.
OWASP Security Shepherd –
Security Shepherd has been implemented with the aim of fostering and improving security awareness among a varied skill-set demographic. This project enables users to learn or to improve […]

Week 24 In Review – 2014


CySCA2014-in-a-Box –
CySCA2014-in-a-Box is a Virtual Machine that contains most of the challenges faced by players during CySCA2014. It allows players to complete challenges in their own time, to learn and develop their cyber security skills.
From a Username to Full Account Takeover –
Usernames, email addresses and phone numbers are invaluable pieces of information for attackers. […]

Week 21 In Review – 2014


BSides Nashville 2014 Videos –
These are the videos of BSides Nashville 2014. You can download the videos from here.
Powershell’s Pastebin –
Pastebin is #1 paste tool. Here is a list of Powershell’s pastebin.
2014 Trustwave Global Security Report Available Now –
Trustwave released their annual 2014 Trustwave Global Security Report, an analysis of compromise and threat statistics […]

Week 20 In Review – 2014


Infiltrate 2014 –
Here are some additional resources of Zach Cutlip that may have mentioned in his Infiltrate 2014 presentation.
BlueHat Security Briefings: Fall 2013 Sessions –
The 2013 BlueHat Security Briefings took place on the Microsoft campus in December 2013. Here are the list of talks and discussions.


mimikatz 2.0 alpha 20140519 –
You can download this new […]

Week 19 In Review – 2014


Web security tricks –
Bugs Collector is a database of web security breaches and tricks collected from all over the world. Tricks are available here.
ShowMeCon 2014 Videos –
These are the videos of ShowMeCon 2014. You can watch and download all the videos from here.
LayerOne 2013 –
Archives of the videos of Los Angeles’ premiere security conference […]

Week 17 In Review – 2014


Verizon Data Breach Investigations Report –
The 2014 Data Breach Investigations Report (DBIR) casts new light on threats — taking 10 years of forensic data and finding that 92% of these can be categorized into nine basic attack patterns. This approach also helps identify primary threats to your industry, which you can analyze to reinforce […]