Events Related PH-Neutral, My First and Last One - blog.rootshell.be What differentiate PH-Neutral from the other conferences? It’s different that’s all! Don’t try to find something equivalent on earth! It’s a mix of party, drinks, talks (yes, there was and good ones!) and social networking. Honestly I never saw so many top-notch hackers per square [...]
Events Related Cyber Defence Challenge: Analogies - holisticinfosec.blogspot.com I recently had the opportunity to interview Alexei Czeskis, the captain of the University of Washington (UW) team who won this year's National Collegiate Cyber Defense Competition (CCDC). During my discussion with Alexei I was immediately drawn to the fact that his approach and tactics closely mirror [...]
Resources Hakin9 Magazine Cloud Security Issue - mytalkoot.com Comprehensive cloud-centric resources and articles now available for download. Club Hack Magazine May Issue On browser Security - professionalsecuritytesters.org Here we are again with the latest issue of ClubHack Magazine. This time also the issue is dedicated to Browser security. Hacking Illustrated - irongeek.com In this section [...]
Events Related ICSJWG Debriefing The semi-annual Industrial Control System Joint Working Group Conference is traditionally the best place to catch up with everyone in the ICS Security community. DHS puts on a solid program, and there is a certain feeling you need to be here even though there have been little non-conference results from ICSJWG [...]
Events Related Debriefing on BSidesLondon It was a long but wonderful day! I woke up very early to catch my train from Brussels to London and arrived just in time. The room was already full of security guys, some well known faces and new ones. BSidesLondon Wrap up - blog.rootshell.be BSidesLondon D-Day - blog.rootshell.be BSidesLondon: [...]
Events Related: OWASP threat modeling project - myappsecurity.blogspot.com We are starting an OWASP threat modeling project to standardize a threat modeling approach which can be used by various companies. Resources: Neil Daswani Reveals His Process for Security Research - resources.infosecinstitute.com In our ongoing series of interviews, this week Neil Daswani answered a few questions and [...]
Resources Weaponizing doz.me: Improved HTML5 DDOS – spareclockcycles.org Beyond making the backend code a little bit less of a disaster than it was originally, I have also made the attack itself significantly more effective. Location of Forensice Evidence in the Registry - travisaltman.com I got tired of always searching online for the location of something [...]
Events Related Outerzone 2011 Hacker Con - irongeek.com The following are videos of the presentations from the Outerzone 2011 hacker conference. Resources web.config Security Analyzer This little beauty let’s you feed in a Web.config then it comes back and tells you everything you’ve done wrong in the world of security configuration. web.config Security Analyzer - [...]
Events Related BlackHat Europe 2011 Participant blog journals about what happened during recently concluded BlackHat Europe in Barcelona. BlackHat Europe 2011 Day 01 - corelan.be BlackHat Europe 2011 Day 02 - corelan.be Blackhat Europe 2011 Day 01 wrap-up - blog.rootshell.be BlackHat Europe 2011 Day 02 wrap up - blog.rootshell.be CanSecWest 2011 - intrepidusgroup.com CanSecWest is [...]
Events Related CanSecWest Event debriefing CanSecWest, a decade later and still growing - privasectech.com CanSecWest 2011 day 1 - the-interweb.com CanSecWest 2011 day 2 - the-interweb.com CanSecWest 2011 day 3 - the-interweb.com Highlights of CanSecWest Day 1 - blogs.mcafee.com Highlights of CanSecWest Day 2 - blogs.mcafee.com Understanding and Exploiting Flash Vulnerabilities - log.fortinet.com CanSecWest Presentations [...]