Events Related:
- Tentative Speaker List for SANS Incident Detection Summit – taosecurity.blogspot.com
A run-down of the main panelists for the various talks at the SANS event at Washington, D.C. - DojoCon Videos Online – taosecurity.blogspot.com
A set of videos for the security event are now available.
- hack.lu09 – The Review – blogs.23.nu/RedTeam
A short recap of the Luxembourg security conference - Toorcon 11 Computer Security Conference – sun.com
A detailed summary of the events of this conference from Dan Anderson’s perspective.
Resources:
- Into The Boxes – intotheboxes.wordpress.com
Into The Boxes is an e-magazine covering issues concerning Digital Forensics and Incident Response. - Web Application Security Statistics – webappsec.org
A recent paper published by the Web Application Security Consortium- WASC Web Application Security Statistics Published – mandiant.org
A review of the above paper
- WASC Web Application Security Statistics Published – mandiant.org
Tools:
- Microsoft release v1.02 of Enhanced Mitigation Evaluation Toolkit (EMET) – isc.sans.org
EMET has a bunch of neat features to help harden bad code. - Metasploit blends in: New MSFPAYLOAD / ENCODE – room362.com
A new option is added to MSFENCODE for easier usage. - UCSniff v3.0 Released – security-database.com
This VOIP and IP Video security assessment tool helps against call and camera eavesdropping. - Graudit v1.3 Released – security-database.com
GNU grep is used by this tool to sniff out potential security flaws in code. - WEPBuster v1.0 Beta0.7 Released – security-database.com
A small utility written to aid in conducting wireless security assessment. - Websecurify Updated to v0.4 RC1 – security-database.com
A testing framework using fuzzing and other technologies - Lynis updated to version 1.2.7 – security-database.com
The auditing tool gets updates for kernel hardening, AIX support, among others. - Web Security Dojo v0.2 Released – security-database.com
A training environment for pentesting is updated.
Techniques:
- One more point on Oracle password crackers – petefinnigan.com
A couple of thoughts on password management and password cracking. - GIAC paper on Burp Intruder – portswigger.net
Karl Dawson has a nice paper on using Intruder to get login credentials. - Watcher: Spotting dubious webishness – holisticinfosec.blogspot.com
Use this tool for passive security auditing. - Cracking PGP in the Cloud – slashdot.org
It just takes Amazon EC2 for computing horsepower and Elcomsoft’s cracking software. - The Machine SID Duplication Myth – technet.com
Mark Russinovich explains the concept of SID, its implementation and how to change it. - Windows 7 includes soft-ap – erratasec.blogspot.com
An explanation on how to create an access point in Windows 7 - Take your %00 and shove it – hp.com
An assessment of a null byte vulnerability by HP Security Laboratory - Owning a Windows network – hexesec.wordpress.com
Taking advantage of LM / NTLM hashes to check which systems use the same hashes. - Checking valid Windows logins with Metasploit – hexesec.wordpress.com
A few ways to check the validity of Windows credentials. - Can you find the vulnerabilities? Part Two – securityninja.co.uk
A few exercises in locating exploits.
Vulnerabilities:
- Bug in most Linuxes can give untrusted users root – slashdot.org
A null pointer dereference flaw can provide root access to your Linux box. - Shockwave vulnerability affect more than 450 million systems – slashdot.org
Researchers have discovered critical vulnerabilities in Shockwave, upgrade recommended - MITM attack possible on TLS, SSL, HTTPS
An authentication gap in renegotiation can cause a serious security breach in many protocols, including HTTPS.- Man-in-the-Middle vulnerability for SSL and TLS – slashdot.org
- A zero-day flaw in the TLS and SSL protocols… – hackerscenter.com
- Secure Browsing Ain’t So Secure, After All – fastcompany.com
- Thoughts on the TLS bug – tombom.co.uk
- SSL and TLS Authentication Gap vulnerability discovered – ivanristic.com
Vendor/Software Patches:
- New version of OpenSSL released – OpenSSL 0.9.8l – isc.sans.org
This new version removes TLS/SSL renegotiation to sidestep the recent network vulnerability.
Other News:
- Feds Charge Cable Modem Modder With ‘Aiding Computer Intrusion’ – wired.com
An Oregon hardware hacker has been charged with aiding and abetting computer intrusion and wire fraud. - Security Intelligence Report v7
Microsoft has released a report detailing threat-related trends in the computer security environment.- Security Intelligence Report v7 is Now Available – technet.com
- New Microsoft Security Intelligence Report Released – windowsteamblog.com
- First Spyware for Android released – smobilesystems.com
A brief description of the new malware targeting Google’s mobile OS. - Securing the Cyber Supply Chain – informationweek.com
A look into how to secure you systems in a holistic, end-to-end fashion - Test of 16 Anti-Virus Products Says None Rates “Very Good” – slashdot.org
It looks like your favorite AV might not be able to protect your computer that well after all. - Oracle Security Summary – oracleforensics.com
Feedback on a recent article regarding database application monitoring - First iPhone worm discovered, rickrolls jailbroken phones – slashdot.org
An Australian hacker changes iPhone wallpaper into a picture of the 80’s icon. - Microsoft Forensic Tool COFEE leaked to outside world
The forensic tool for law enforcement use is available on The Pirate Bay.- Microsoft COFEE Leaked – slashdot.org
- Ethics of spilled COFEE – mckeay.net
- Some news on the Brazilian Power Outages
- Massive Power Outages in Brazil Caused by Hackers – slashdot.org
- Brazil outage NOT caused by hackers – erratasec.blogspot.org
Leave A Comment