Via: Know the Network
A good friend recently asked me about Social Media Skill Building and Social Marketing training so I decided to compile a list of books, people, and blogs that I’ve found to be an invaluable educational resource. Purists will be quick to point out that there is no such thing as Social Marketing, just marketing applied [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/intro-to-scanning-nmap-hping-amap-tcpdump-metasploit-jeremy-druin
This is the 2nd in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. This one covers scanning Nmap, Hping, Amap, TCPDump, Metasploit, etc.
Via: Irongeek
Three more great videos from Jeremy Druin (@webpwnized ):
Detailed Look At Linux Traceroute
This video takes a detailed look at the traceroute program in Linux. The newer traceroute is used (version 2.0.18). The later versions have the ability to send packets of different protocols (i.e. TCP) to the target. This feature was previously found in the LFT (Layer Four Traceroute) tool but not found in the Linux traceroute. While LFT still is more feature-rich than the traceroute built into Linux, the new features in Linux traceroute make the tool very useful and quite capible. It helps to understand how the traceroute tool forms the packets, to what ports the packets are sent, and what protocols can be used to send the packets. This information can be used to get traceroute commands to work through firewalls and HIPS systems when ICMP and/or UDP and/or most TCP ports are blocked.
Introduction To TCPDump Network Sniffer
This video is an introduction to the tcpdump network packet sniffer/capture tool. The video is relatively long because of the demo used required "building up" to the HTTP capture. The video only covers the basics but is meant to be a good introduction to practical use of tcpdump.
Basics Of Using The Maltego Reconnaissance Graphing Tool
This video looks at using Maltego to both gather and organize information in a customer pen-test. Maltego is a GUI-based tool for Linux which is included in the Backtrack 5 R2 release. The tool is able to gather information from public sources on entities. The Community Edition (used in this video) is free. There is a paid-version with more features. The site used in this video is irongeek.com and was used with written permission from the owner. If following along, please use a domain for which you have permission.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#finding-comments-and-file-metadata-using-multiple-techniques
Jeremy Druin has made a new video:
This video has two related parts. The first part discusses finding the comments in Mutillidae related to the "comments challenge". This is an easy challenge in Mutillidae but the techniques can be extended to search entire sites for comments. The second part of the video looks at finding metadata in general using a variety of tools.
The tools used are Firefox "View Source", W3AF, grep, wget, Burp Suite, exiftool and strings. The demo site used is Mutillidae, which is a free open-source fully functional PHP site with a MySQL database. The site runs on localhost or it can be run in a virtual network as a practice target or capture the flag target. It is not a good idea to run Mutillidae publically because it will get hacked. Mutillidae is available at Sourceforge and Irongeek.com. Along with the project is several documents and an installation guide for Windows 7.
Also, I updated the Pen-testing practice in a box: How to assemble a virtual network post to fix an audio issue (it was cutting out after a certain amount of time).
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/pen-testing-practice-in-a-box-how-to-assemble-a-virtual-network
This is the first in a line of classes Jeremy Druin will be giving on pen-testing and web app security featuring Mutillidae for the Kentuckiana ISSA. Topics: Virtual Box Installation, Installing virtual machines, Configuring virtual networks - bridged, nat, hostonly, USB devices in virtual machines, Wireless networks in virtual machines, Installing Guest Additions, How to install Mutillidae in Windows on XAMPP, How to install Mutillidae in Linux Samurai
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#how-to-use-dradis-to-organize-nmap-and-nessus-scan-results
New video from Jeremy Druin:
The latest version of Dradis (2.9) has excellent import speed compared to version 2.7. This video looks at using the import features of Dradis to organize the scan results from an nmap scan and a Nessus 5 scan. Dradis is a tool that allows pen testers, auditors, and vulnerability assessors to organize their work by server or other categories. The Dradis starts a web server which other team members can share information as well.
Via: Irongeek
Jeremy Druin has made two more videos:
How To Upgrade To Nessus 5 On Backtrack 5 R2
This video looks at upgrading Nessus 4 to Nessus 5. The operating system used in the video is Backtrack 5 R2. Nessus 4 was successfully registered and running on this OS prior to attempting to upgrade to Nessus 5. If a fresh Nessus install is needed, the process is different.
Creating Reports And Metasploit Db Importable Reports With Nmap Xml Output
Nmap reporting is excellent with the XML option but this is not used in a lot of cases. The XML output from nmap can be imported into other tools such as the Metasploit Community Edition (Import button), metasploit DB, and other tools. Also, the XML format can be opened in a web browser to produce a well-formatted report suitable for attachment to a pen-test.
Via: Irongeek
Outerz0ne Video Move
Still working on moving videos to YouTube to support more devices. Since Outerz0ne is coming up I decided to move their videos next:
Outerz0ne 2011:
SkyDog - Opening Ceremonies/etc.
SkyDog - The Modern Day Hacker
IronGeek - Rendering Hacker Con Videos with AviSynth
MadMex - Windows Command Line Incident Response
HalfJack -Building your Own Green Home
Beau Woods - What Companies and Vendors must know about securing mobile devices, mobile applications, access and data.
Rick Hayes - Assessing and Pen-Testing IPv6 Networks
Pure Hate - Why your password policy sucks
Billy Hoffman - Advice on starting a start-up
Contest Prize Giveaway, Awards, Closing Ceremonies
Outerz0ne 2010:
Intro to Outerzone and Talk 1 - Security People Suck - Gene Bransfield
IronGeek - Turning the Zipit 2 into a mobile hacking device
Freeside
PBR90X - Social Networking #FAIL
Scott Moulton - Hard Drive Kung Fu Magic
Brian Wilson -Docsis Coolness
BobTalks
Billy Hoffman - Web Performance Talk Craziness
Closing Ceremonies
Outerz0ne 2009
Morgellon - *Duino-Punk! Manifesting Open Source in Physical Space from Outerz0ne 5
Tyler Pitchford - They took my laptop! - U.S. Search and Seizure Explained
SkyDog - Screen Printing Primer - Make your own Con Shirt!
SlimJim100 - Live Demo of Cain & Able and the Man-in-the-middle-attack
Nick Chapman - Embedded Malicious Javascript
Makers Local 256 - A primer on hackerspaces
Scott Moulton - Reassembling RAID by SIGHT and SOUND!
Rob Ragan - Filter Evasion - Houdini on the Wire
Acidus (Billy Hoffman) - Offline Apps: The Future of The Web is the Client?
Closing
Also, a video I did about Outerz0ne and Notacon 2009:
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#manual-directory-browsing-to-reveal-mutillidae-easter-egg-file
Jeremy has made another video:
This video looks at manual testing for directory browsing misconfiguration vulnerabilities in Mutillidae. For directory browsing brute forcing, OWASP DiRBuster or Burp-Suite Intruder are great tools. However, Mutillidae gives away some of its directory paths when serving PDF and other files. These can be tested manually to reveal the Mutillidae Easter egg file. Also common directory names like "include" and "includes" can be tried quickly just using a browser before firing up the tools.
Via: Know the Network
While the tech world was busy watching the latest “find your friends” app I’ve actually found 2 startups looking to solve some real world issues. Namely contacts. Keep Contact Info Updated First you have to check out WriteThat.Name This is an idea so good and so simple you’ll wonder why it hasn’t been around for [...]
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae#generate-cross-site-scripts-with-sql-injection
Jeremy has made another video:
This video discusses an advanced SQL injection technique. The SQL injection is
used to generate cross site scripting. This is useful when cross site scripts
cannot be injected into a webpage from a client because web application
firewalls or other scanners are in place. When an SQL injection can be snuck
past the WAF, it is possible to have the SQL injection generate the Cross Site
Script dynamically.
Via: Know the Network
I think it happens to everyone. Some salesperson or rep finds our email one time and decides to occasionally send us product updates or sales pitches. However, they never asked you to opt-in or subscribe and they don’t provide a clear method for unsubscribing. Note: I’m not talking about real spam (the viagra and casino [...]
Via: Know the Network
I often have to configure a firewall rule to specifically allow Google Earth so if you find yourself in the same situation here are the IP addresses that allow communication. Domains Note you can run an iplookup for these 3 subdomains: kh.google.com geo.keyhole.com auth.keyhole.com but there are still a few IP addresses needed that aren’t [...]
Via: Know the Network
As I prepared for a recent conference I decided it was time to find out if my iPad could really handle note taking. What I Needed I love outlines and it is how I organize thoughts and take notes. For 10 years I’ve used a laptop at conferences to take notes at 73 wpm but [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/web-application-pen-testing-tutorials-with-mutillidae
When I started the Mutillidae project it was with the intention of using it as a teaching tool and making easy to understand video demos. Truth be told, I never did as much with it as I intended. However, after Jeremy Druin (@webpwnized) took over the development it really took off. I have since come to find out he has been doing A LOT of YouTube video tutorials with Mutillidae, which he said I could share here. I will be copying his descriptions with slight editing and embedding his videos in this page. Videos include:
Explanation Of HTTPonly Cookies In Presense Of Cross Site Scripting
Demonstration Of Frame Busting Javascript And X-Frame Options Header
Basics Of Web Request And Response Interception Using Burp Suite
Automate SQL Injection Using SQLMap To Dump Credit Cards Table
Command Injection To Dump Files Start Services Disable Firewall
How To Exploit Local File Inclusion Vulnerability Using Burp Suite
HTML Injection To Popup Fake Login Form And Capture Credentials
Two Methods To Steal Session Tokens Using Cross Site Scripting
Basics Of Using SQL Injection To Read Files From Operating System
Basics Of Injecting Cross Site Script Into HTML Onclick Event
Comparing Burp Intruder Modes Sniper Battering RAM Pitchfork Cluster Bomb
How To Import Nessus Scans Into Metasploit Community Edition
Basics Of Exploiting Vulnerabilities With Metasploit Community Edition
Sending Persistent Cross Site Scripts Into Web Logs To Snag Web Admin
Quick Start Overview Of Useful Pen-Testing Addons For Firefox
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/crypto-block-cipher-modes-openssl-aes-128-ecb-cbc
Hopefully this will give a nice visual illustration of how Electronic codebook (ECB) and Cipher-block chaining (CBC) work using AES-128 and OpenSSL. You can learn a lot from a known plain text, and repeating patterns. Inspired by labs from Kevin Benton & "Crypto Lab 1" SEED.
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=security/shared-hosting-md5-change-detection-script
Fixed an issue with permlog.txt not being put in the $ScriptDir directory.
Via: Irongeek
Video:ttps://www.derbycon.com/2012/03/12/derbycon-2-0-the-reunion-it-begins/
Dave Kennedy has posted a promo video form Derbycon 2012. A few prominent speakers have been announced. Hope you all can make it this year. To see what you missed from Derbycon 2011, go visit the video page.
Via: Know the Network
Spend enough time reading on your iPhone/iPad and you’ll realize every web browser should have a “Reader” button. — Keith Crawford (@tsudo) March 1, 2012 I posted the tweet above last night and until the major browsers include a distraction free reading mode here are a couple of good options in the meantime. A quick [...]
Via: Know the Network
Spend enough time reading on your iPhone/iPad and you’ll realize every web browser should have a “Reader” button. — Keith Crawford (@tsudo) March 1, 2012 I posted the tweet above last night and until the major browsers include a distraction free reading mode here are a couple of good options in the meantime. A quick [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=security/plug-and-prey-malicious-usb-devices#video
I recently found out that the CACR at Indiana University posted a video of a talk I did for them awhile back, so I decided to update my Malicious USB Devices page to embed it and the other versions of the talk I have.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=security/how-i-got-pwned-lessons-in-ghetto-incident-response
For those wondering about the details of my recent defacement.
Via: Know the Network
No sexy headlines or social insights today just tweaking out our ubiquitous USB flash drives. I use mine on a near daily basis and here are the tips I use to make my drive more useful and more secure. If you want to skip the work and get the goods, scroll to the bottom. Customize [...]
Via: Know the Network
The challenge – You can have 10 apps but only 10 apps. From someone that’s downloaded 350+ apps and currently have around 100 installed this is a bit of a challenge but here’s my list. [Updated /14/2012] Evernote – The ultimate notepad app. Capture photos, audio notes, and store documents straight to your phone. Data [...]
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/shmoocon-firetalks-2012
Night 1
“How Do You Know Your Colo Isn’t “Inside” Your Cabinet, A Simple Alarm Using Teensy” by David Zendzian
“Bending SAP Over & Extracting What You Need!” by Chris John Riley
“ROUTERPWN: A Mobile Router Exploitation Framework” by Pedro Joaquin
“Security Is Like An Onion, That’s Why it Makes You Cry” by Michele Chubirka
“Five Ways We’re Killing Our Own Privacy” by Michael Schearer
Night 2
“Cracking WiFi Protected Setup For Fun and Profit” by Craig Heffner
“Passive Aggressive Pwnage: Sniffing the Net for Fun & Profit” by John Sawyer
“Ressurecting Ettercap” by Eric Milam
“Security Onion: Network Security Monitoring in Minutes” by Doug Burks
“Remotely Exploiting the PHY Layer” by Travis Goodspeed
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/shmoocon-epilogue-2012
Includes:
Resurrection of Ettercap: easy-creds, Lazarus & Assimilation
Eric Milam - (Brav0Hax) &
Emilio Escobar
Media Hype and Hacks that Never Happened
Space Rouge
More than one way to skin a cat: identifying multiple paths to compromise a target through the use of Attach Graph Analysis
Joe Klein
Proper Depth / Breadth testing for Vulnerability Analysis and fun with tailored risk reporting metrics.
Jason M Oliver
Extending Information Security Methodologies for Personal User in Protecting PII.
John Willis
Stratfor Password Analysis
Chris Truncer
Intro To Bro
Richard Bejtlich
Javascript obfuscation
Brandon Dixon
Via: Know the Network
Two apps making the rounds this week that are built on top of the Foursquare platform. #Mom – HashtagMom.com A great idea that keeps Mom from worrying. Just add #mom to your check in and they will call or text your mother to let her know you arrived safely. I’ll be adopting this as soon [...]
Via: Know the Network
Are you a Gmail user and you own an iPhone? You probably aren’t taking full advantage of either product. Want faster mail delivery or multiple calendars? Here is the advanced setup. The Better Setup for Gmail on iPhone Many people assume they should use the Google Mail option when adding their Gmail account to their [...]
Via: Know the Network
[To my Readers: The following is an open letter that I’ve sent to my elected representatives. While I fully support the Internet Protest today I’ve chosen not take down my site because where else would I have the freedom and power to publish to the world… and isn’t that the point. Help fight Internet Censorship] [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/basic-setup-of-security-onion-snort-snorby-barnyard-pulledpork-daemonlogger
Thanks to Doug Burks for making building a Network Security Monitoring Server much easier. I mentioned Snort, Snorby, Barnyard, PulledPork and Daemonlogger in the title, but there is a lot more on the distro than that. This is a nice way to get an IDS up and running featuring pretty frontends without going into dependency hell.
Via: Know the Network
At the beginning of each year I take time to organize and simplify my digital life and in 2012 I tackled a whale… email. My problem is not managing my inbox but rather I had too many email accounts. So I simplified and in the process decided to give Mozilla’s email client Thunderbird another look. [...]
Via: Know the Network
A run down of the things I’m testing, trying, and liking… Recently Discovered iPhone apps I’m loving Garmin onDemand – $0.99 Requires active data connection. Terrific navigation app. Instantly became my go to map app. Twittelator Neue – $1.99 Best Twitter iPhone app I’ve ever used. Inline photos, intuitive controls and just plain awesome. AutoMD.com [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/networkminer-professional
This video was made to show some of the extra features of NetworkMiner Professional, like Pcap-over-IP, running on OS X under Mono, Export results to CSV / Excel, Geo IP localization, Host coloring support, and Command line scripting support.
Via: Irongeek
Link:http://www.irongeek.com/i.php?page=videos/derbycon1/jamison-scheeres-social-engineering-is-a-fraud
Jamison gave me the go ahead to post his video from Derbycon. Now I just have to get off my lazy butt and do the video for the updated/professional version of NetworkMiner.
Via: Know the Network
What is that star thing? and What does it do? There seems to be a lot of folks that haven’t really explored favoriting tweets or at least don’t see value of starring tweets of others so here’s a quick intro to one of the most overlooked little gems of Twitter. What is a Favorite? There [...]
Via: Know the Network
Perhaps no other area has the mobile revolution so drastically improved as the world of travel. From where you eat to finding the nearest bathroom your smartphone (and tablet) may be the most valuable travel guides the world has ever created. Here’s how to add some tech to your next trip and ensure a smooth [...]
Via: Irongeek
Updates To Homemade Hardware Keylogger/PHUKD Hybrid Fixed some bugs, added some features.
Change logs:
PS/2 Hardware Keylogger/PHUKD:
0.01:
* Holding mod keys did not always work for multi select. Got it working (at least I think I did).
* Nulls were getting into the logs, so I made an unhandled keycode exception.
USB Hardware Keylogger/PHUKD:
0.01:
* Holding mod keys did not always work for multi select. Got it working by taking out the key replay code,
and made held keys function better in the process. Also, it made the code simpler to read as I got rid
of a bunch of unneeded cruft code. :)
* Nulls were getting into the logs, so I made an unhandled keycode exception.
*Changed log brackets from <> to [].
0.02:
* Fixed bug in logging unknown keys.
* Added logging for keys [KEY_TAB] and [KEY_NON_US_NUM].
* Ctrl+Alt+S toggles the typing of raw bytes as they come in the serial connection.
* Converted ints to bytes in many places. I think their was a type casting problem causing weird issues.
* Fixed a buffer overflow issue caused by IncomingHIDReportIndex going over 18.
* Many other tiny changes.
Via: Know the Network
Evernote is a vast and powerful system but it takes time to discover its place in your work flow. You’re confident that it solves a problem but you aren’t sure which one. Don’t worry, I think that may be the common experience. I had Evernote installed for months before I really began to use it [...]
Via: Know the Network
I’m starting a new series on one of the most flexible and productive pieces of software I’ve ever used. Evernote. I find myself spending more time discussing Evernote in my presentations and having conversations about it on a weekly basis. I’ve become an unofficial evangelist because this beautiful and simple system has transformed how I [...]
Via: Irongeek
Link: http://www.irongeek.com/i.php?page=videos/derbycon1/mainlist
Remember, these are coming out in waves. In this wave are all of the videos from the first day of the conference. In this wave:
Adrian, Dave, Martin: Welcome to DerbyCon 2011 – Intro to the con and events
KEYNOTE ~ HD MOORE – Acoustic Intrusions
Johnny Long – Hackers for Charity Update
Kevin Mitnick + Dave Kennedy – Adaptive Penetration Testing
The Penetration Testing Execution Standard (PTES) Panel
Bruce Potter – The Details Don’t Matter
Chris Nickerson – Compliance: An Assault on Reason
Pat McCoy & Chris Silvers – Hook, Line and Syncer: The Liar for Hire’s Ultimate Tacklebox
atlas – sploit me if you can
Jason Scott – Jason Scott’s Shareware Calvacade
Vlad Gostom & Joshua Marpet – Smile for the Grenade! Camera go Bang!