Events Related: Shmoocon Infosec Conference Event - novainfosecportal.com A few details on this security event to be held next year. Toorcon 11 San Diego 2009 - cassandrasecurity.com A brief post on a presentation shown during this security event. Presentation from NIST SCAP - chuvakin.blogspot.com Notes from NIST SCAP 5th Security Automation Conference - chuvakin.blogspot.com A [...]
Events Related: S4 registration open / full agenda available - digitalbond.com The 2010 SCADA Security Scientific Symposium has opened it registration and its schedule is now available. RSA Europe 2009 - Day 1 Recap - infosecramblings.com Interesting Information Security Bits RSA Catch-up Part 1 - infosecramblings.com RSA Europe 2009 Security Bloggers Meetup Recap - infosecramblings.com [...]
Events Related: Second w3af training @ New York - bonsai-sec.com The ninja training course is focused on manual and automated discovery and exploitation of web application vulnerabilities using w3af. AppSec DC and OWASP Global Summit 2009 - owasp.blogspot.com AppSec Brazil 2009 - Call for Participation - owasp.blogspot.com Schedules for upcoming OWASP conferences plus a few [...]
Events Related: FRHACK01 copy of presentations - professionalsecuritytesters.org A list of the slides from the recent French conference Things I Learned at SecTor 2009 - preachsecurity.blogspot.com SecTor 2009 thoughts and insights SecTor 2009 Wrapup - spywareguide.com My Sector '09 Experience - anti-virus-rants.blogspot.com Resources: All about Website Password Policies - jeremiahgrossman.blogspot.com Some simple guidelines when implementing [...]
Tools: pwntooth v0.2.1 - sourceforge.net/projects/pwntooth/ pwntooth (pown-tooth) is designed to automate Bluetooth Pen-Testing. FRHACK OS v1 alpha1 – Pentesting/Security LiveCD - darknet.org.uk It’s a fully fledged linux pen-testing/security environment. Metasploit 3.3 Development Updates - metasploit.com The team is in the process of baking in a few additions to the popular pentesting tool. Katana v1.0 Beta [...]
Resources: Free Online Information Security Training By Offensive Security - offensive-security.com A free version of the online course, Metasploit Unleashed – Mastering the Framework. The Top Cyber Security Risks - sans.org Two risks dwarf all others, but organizations fail to mitigate them SecurityTube - hackaday.com This is the YouTube for hacks and security-related videos. Research [...]
Events Related: Diutinus Defense Technologies Corp. - ddtek.biz The site of the team managing the DEFCON CTF games. SecureTubeCon - securitytubecon.org This conference will be held completely online! Tools: Aircrack-ng v1.0 - aircrack-ng.org Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. Bsqlbf [...]
Events Related: Special Publication 800-53 Revision 3 Workshop - guerilla-ciso.com Ron Ross from NIST will talk about how the NIST Risk Management Framework is changing to a more dynamic “real-time continuous monitoring”. Resources: (IN)SECURE Mag Issue 22 - net-security.org The free publication includes the top 5 myths of wireless protection, security for multi-enterprise applications and [...]
Events Related: T2'09 Challenge - f-secure.com Solve the puzzle and win; you can win with Speed or Style. Tools: Dranzer v1.9.1 - sourceforge.net/projects/dranzer/ CERT developed this open source tool so that software developers can test ActiveX controls for vulnerabilities. Techniques: Web Application Scanning Using Nessus Video - tenablesecurity.com Scanning web applications with Nessus offers the [...]
Events Related: CanSecWest Registration - cansecwest.com Official site for the CanSecWest registration Hacking at Random event comments A look at the happenings of this hacker's summer camp over at the Netherlands. Hacking at Random: more bandwidth, more far-sightedness, more future - h-online.com Hacking at Random - hackaday.com Defcon Roundup Part II - reusablesec.blogspot.com Some reflections [...]