Event Related Hacker Internship – nds.ruhr-uni-bochum.de Web applications are in the age of Web 2.0 increasingly become the target of attackers. Thus no problem SQL injection foreign databases are compromised, stolen by XSS vulnerability browser sessions and via cross-site request forgery you get from one day to the countless new friends in a social network. [...]

Event Related Our CanSecWest 2012 slides on passive DNS and Picviz – picviz.blogspot.fr Alexandre Dulaunoy from CIRCL.LU and Sebastien Tricaud from Picviz Labs have been talking at CanSecWest 2012 in Vancouver, Canada, on how to scrutinize a country using passive DNS and Picviz. SyScan 2012 Singapore slides – www.xchg.info Conference and slides of SyScan 2012 [...]

Event Related AppSecDC AppSecDC Recap: Old Webshells, New Tricks – novainfosecportal.com Back in the day web shells were all the rage so I was curious what “new” was happening in this area. Ryan Kazanciyan started off with a summary of some of the more poplar web shells he’s seen in the past several years. AppSecDC [...]

Event Related OWASP AppSec USA 2011 Schedule/Slides/Video – appsecusa.org Schedule, slides, and video for OWASP AppSec USA 2011 – September 20-23 ShmooCon 2012 – January 27-29 – Presentations – shmoocon.org ShmooCon 2012 Presentations and Videos available here. FOSDEM 2012 – First video recordings uploaded! – fosdem.org We are pleased to announce that the first video [...]

Here are information security events in North America this month: SANS Las Vegas: Septemer 17 to September 26 in Las Vegas RAID 2011: September 20 to September 21 in Menlo Park AppSEC USA 2011: September 20 to September 24 in Minneapolis DerbyCon: September 30 to October 3 in Louisville   And here are the information [...]

Events Related: wXf Videos from AppSec DC 2010 – cktricky.blogspot.com Here are some of the videos from AppSec DC 2010 and our presentation (Seth Law, Chris Gates and I) on wXf (Web Exploitation Framework). DeepSEC: Wrap-up – c22.cc It might not be as technical as DefCon, but DeepSEC had a good mixture of topics, and [...]

. Here are the information security events in North America this month: Government Cyber Security Readiness Summit: November 3 to 5 in Arlington HouSecCon 2010: November 4 in Houston Hackfest 2010: November 5 to 6 in Sainte-Foy Security BSides DFW: November 6 in Dallas Security BSides Delaware: November 6 in New Castle AppSec DC: November [...]

Events Related: AppSec News AppSecUSA – Day 1 – You Missed A Good One - michael-coates.blogspot.com AppSecUSA – Day 2 – You Missed A Good One – michael-coates.blogspot.com DEFCON 18 Social-Engineer CTF Contest Findings Report Summary – social-engineer.org One of the most alarming findings was that it doesn’t take a seasoned expert in social engineering to [...]

. Here are the information security events in North America this month: AppSec USA 2010: September 7 -10 in Irvine The International Symposium on Visualization for Computer Security (VizSec):  September 14 in Ottawa ISSA International Conference: September 15 – 17 in Atlanta The 13th International Symposium on Recent Advances in Intrusion Detection (RAID): September 15 [...]

Events Related: Conference swag #defcon 9 to 18 badges laying around. (minus my missing dc 7, 8 or 12 badges) – @blackfeathers defcon badges & other security conference passes – flickr.com Metasploit Express crucial to win in South Florida ISSA Hack the Flag – rapid7.com Seven teams participated, defending systems running a variety of off-the-shelf [...]