Events Related: RSnake, Web Security and a few beers - andlabs.org Reminiscing Black Hat Abu Dhabi. DojoCon Follow-Up - novainfosecportal.com Although there was a formal CFP, everything else followed a traditional unconference format. SANS SEC660: Post Mortem - c22.cc The class is designed to cover the ground between the SEC560 Network Penetration Testing class and [...]
Resources: Impersonating The Domain Administrator via SQL Server - commonexploits.com A recent presentation I gave for 7Safe. It demonstrates how it is possible to fully compromise the domain using a fully patched Microsoft SQL server that has a firewall enabled. RuxCon 2010 Materials - ruxcon.org.au Talk PDFs now posted. Nuff said. New SANS Course - [...]
Each week, we'll highlight a major city in the US and cover the places and events you can go to in that area to get your security information fix. This post is part of the information security communities. Rhode Island and the city of Providence are favorite vacation spots for many in the East Coast. [...]
. Here are the information security events in North America this month: Hackers to Hackers Conference 2010: December 3 in Cancun SANS WhatWorks in Incident Detection and Log Management Summit 2010: December 8 to 9 in Washington, DC BayThreat: December 10 to 11 in Mountain View DojoCon 2010: December 11 to 12 in Dulles . [...]
Events Related: wXf Videos from AppSec DC 2010 - cktricky.blogspot.com Here are some of the videos from AppSec DC 2010 and our presentation (Seth Law, Chris Gates and I) on wXf (Web Exploitation Framework). DeepSEC: Wrap-up - c22.cc It might not be as technical as DefCon, but DeepSEC had a good mixture of topics, and [...]
Each week, we'll highlight a major city in the US and cover the places and events you can go to in that area to get your security information fix. This post is part of the information security communities. This time around we will be looking at the Atlantic state of North Carolina, specifically the area [...]
Events Related: The UCSB iCTF - uscb.edu The UCSB International Capture The Flag (also known as the iCTF) is a distributed, wide-area security exercise, whose goal is to test the security skills of the participants. Another #sectorca has come and gone - anti-virus-rants.blogspot.com It just so happens i took quite a few notes this year [...]
Events Related: HTML5 goodness at BlackHat Abu Dhabi this week - andlabs.org In addition to covering some of the interesting HTML5 attacks already released during 2010 by myself and other researchers, it has two new sections - HTML5 based port scanning and HTML5 Botnets. Resources: Google Hacking Database Reborn - exploit-db.com Johnny Long of Hackers [...]
Each week, we'll highlight a major city in the US and cover the places and events you can go to in that area to get your security information fix. This post is part of the information security communities. Disneyland! Well, what else is there in Orlando beside America's flagship theme park? Well infosec, of course. [...]
Events Related: Getting Into Information Security Intelligence Gathering: A BlueHat v10 Retrospective from Speakers Ian Iftach Amit and Fyodor Yarochkin - technet.com Having a chance to share this kind of research and finding like-minded individuals who are busy working the same angles is a real treat, and one of the major quality assurance measures we [...]