Resources Vendor Checklist app / Trust Metric app – archon.thewatchers.net ISECOM (the Institute for Security and Open Methodologies) began with the release of the OSSTMM, the Open Source Security Testing Methodology Manual. It was a move to improve how security was tested and implemented. Dumping Data from Memcached Servers – breenmachine.blogspot.com Memcached servers provide a dynamic, distributed [...]
Black Hat USA Briefings Giveaway Enter to win an Black Hat USA 2014 Briefings ticket worth $2,2000 from Infosec Events Events Related School on Applications of Open Spectrum and White Spaces Technologies - Schedule – wireless.ictp.it ICTP School on Applications of Open Spectrum and White Spaces Technologies - 2014 workshop schedule is available here. You can [...]
Black Hat USA Briefings Giveaway Enter to win an Black Hat USA 2014 Briefings ticket worth $2,2000 from Infosec Events Events Related Hack in Paris 2014 Wrap-Up Day #1 – blog.rootshell.be Hack in Paris, a French security conference held in Disneyland Resort Paris. The conference started with a sunny sky over the conference centre in the [...]
Resources Circle City Con 2014 Videos – www.irongeek.com These are the Circle City Con 2014 videos. You can watch and download all of the recordings from here. OWASP Security Shepherd – owasp.org Security Shepherd has been implemented with the aim of fostering and improving security awareness among a varied skill-set demographic. This project enables users to learn [...]
Resources CySCA2014-in-a-Box – cyberchallenge.com.au CySCA2014-in-a-Box is a Virtual Machine that contains most of the challenges faced by players during CySCA2014. It allows players to complete challenges in their own time, to learn and develop their cyber security skills. From a Username to Full Account Takeover – blog.spiderlabs.com Usernames, email addresses and phone numbers are invaluable pieces of [...]
Resources CRITs-Collaborative Research Into Threats – crits.github.io Upload threat data and uncover critical information to keep your organization safe. Develop additional capabilities using the Services Framework to combine CRITs with third-party and home-grown intelligence systems. Heartbleed, Cupid and Wireless – sysvalue.com Since Luis Grangeia presentation on cupid had gotten quite a bit of attention, he felt it’s [...]
Events Related HITB Amsterdam 2014 Wrap-up HITB Amsterdam 2014 Wrap-up Day #1 – blog.rootshell.be Xavier is in Amsterdam for attending at the new edition of Hack In The Box. This is a special edition with many improvements. HITB2014AMS – Day 1 – State of the ART: Exploring the New Android KitKat Runtime – www.corelan.be This is a [...]
Resources BSides Nashville 2014 Videos – www.irongeek.com These are the videos of BSides Nashville 2014. You can download the videos from here. Powershell's Pastebin – pastebin.com Pastebin is #1 paste tool. Here is a list of Powershell's pastebin. 2014 Trustwave Global Security Report Available Now – blog.spiderlabs.com Trustwave released their annual 2014 Trustwave Global Security Report, an analysis [...]
Resources Infiltrate 2014 – shadow-file.blogspot.com Here are some additional resources of Zach Cutlip that may have mentioned in his Infiltrate 2014 presentation. BlueHat Security Briefings: Fall 2013 Sessions – channel9.msdn.com The 2013 BlueHat Security Briefings took place on the Microsoft campus in December 2013. Here are the list of talks and discussions. Tools mimikatz 2.0 alpha 20140519 – [...]
Resources Web security tricks – bugscollector.com Bugs Collector is a database of web security breaches and tricks collected from all over the world. Tricks are available here. ShowMeCon 2014 Videos – irongeek.com These are the videos of ShowMeCon 2014. You can watch and download all the videos from here. LayerOne 2013 – layerone.org Archives of the videos of [...]