Vendor News

/Vendor News

Week 49 in Review – 2010

Events Related: OWASP BeNeLux Day 2010 Wrap Up - rootshell.be Yesterday, the three OWASP Benelux chapters organized together their annual OWASP BeNeLux day. Ok folks, secwest11@cansecwest.com is live and the countdown timer goes to December 29th for entries to CanSecWest 2011 Call For Papers - twitter.com, @dragosr BayThreat was awesome, do it again! - mckeay.net Which [...]

Week 48 in Review – 2010

Resources: Impersonating The Domain Administrator via SQL Server - commonexploits.com A recent presentation I gave for 7Safe. It demonstrates how it is possible to fully compromise the domain using a fully patched Microsoft SQL server that has a firewall enabled. RuxCon 2010 Materials - ruxcon.org.au Talk PDFs now posted. Nuff said. New SANS Course - [...]

Week 46 in Review – 2010

Events Related: The UCSB iCTF - uscb.edu The UCSB International Capture The Flag (also known as the iCTF) is a distributed, wide-area security exercise, whose goal is to test the security skills of the participants. Another #sectorca has come and gone - anti-virus-rants.blogspot.com It just so happens i took quite a few notes this year [...]

Week 44 in Review – 2010

Events Related: Getting Into Information Security Intelligence Gathering: A BlueHat v10 Retrospective from Speakers Ian Iftach Amit and Fyodor Yarochkin - technet.com Having a chance to share this kind of research and finding like-minded individuals who are busy working the same angles is a real treat, and one of the major quality assurance measures we [...]

Week 43 in Review – 2010

Events Related: ToorCon related news Some Results from the ToorCon Security Conference - connectedinternet.co.uk Hackers, security researchers at the ToorCon security conference in San Diego showed how easy it can be to poke holes in hardware and software with the right combination of tools, know-how, and good old fashioned cat curiosity. ToorCon: New Apps, Old [...]

Week 41 in Review – 2010

Events Related: MIRCon, A Look Back I have the good fortune this week of being able to attend Mandiant’s Incident Response Conference (MIRcon) in Alexandria, Virginia, and so far it’s a very good time. Review: Mandiant’s Incident Response Conference (MIRCon) Day 1 - sans.org Review: Mandiant’s Incident Response Conference (MIRCon) Day 2 - sans.org Some [...]

Week 40 in Review – 2010

Events Related: Ekoparty 2010 Wrap-Up - dvlabs.tippingpoint.com The reason that Ekoparty is the premier conference in South America can be summed up in one word: collaboration. Metasploit Unleashed, Again! - offensive-security.com As new features are being added to the Metasploit Framework, we are attempting to add them to the Wiki in order to keep our [...]

Week 39 in Review – 2010

Events Related: EnergySec Summit Recap - digitalbond.com The “Intersection of Security and Compliance” conference theme turned out to be largely an indictment of NERC CIP. What I learned at Brucon 2010 - pauldotcom.com Bottom line: Brucon was awesome! And now my "trademark" post on what I learned (with lots of pictures) BruCon 2010 Training & [...]

Week 38 in Review – 2010

Events Related: Security BSides Kansas City Re-cap - infosecramblings.com BSidesKC was a one day, one track conference packed full of great talks given by great speakers. Below you will find brief descriptions of each talk along with links to the slides where available. What I personally learned at CyberRAID - h-i-r.net Blind SQL injection and [...]

Week 37 in Review – 2010

Events Related: AppSec News AppSecUSA - Day 1 - You Missed A Good One - michael-coates.blogspot.com AppSecUSA - Day 2 - You Missed A Good One - michael-coates.blogspot.com DEFCON 18 Social-Engineer CTF Contest Findings Report Summary - social-engineer.org One of the most alarming findings was that it doesn’t take a seasoned expert in social engineering to [...]