[podcast]http://isdpodcast.com/podcasts/InfoSec Daily Podcast Episode 264.mp3[/podcast]
ISDPodcast Episode 264 for November 23, 2010. Tonight’s podcast is hosted by Rick Hayes, Keith Pachulski, and Karthik Rangarajan.
MyHardDriveDied.com Data Recovery Class:
Washington, DC – December 6th – 10th
Use the Discount Code: isdpodcast for a $300 discount.
SANS Cyber Defense Initiative 2010
Marriott Wardman Park
Dec 10-17, 2010
Jason Lawrence, Management 414: SANS +S Training Program for the CISSP Certification Exam: http://www.sans.org/mentor/details.php?nid=23493
Wednesday, February 23, 2011 – Wednesday, April 27, 2011
Use the Discount Code: isdpod15 for a 15% discount.
13699 Dulles Technology Dr
Herndon, VA 20171
Dec 11-12, 2010
Appalachian Institute of Digital Evidence (AIDE):
AIDE Winter Meeting, Marshall University Forensic Science Center, Huntington, WV
When: February 17 – 18, 2011
CFP Deadline: December 12, 2010
When: Final weekend of April 2011 (30th? – more info pending)
Where: The venue is Holiday Inn (Crabtree) in Raleigh, NC
Call for Papers is now open: email@example.com
40 bit WEP keys used to secure their wireless, time to crack..7 minutes. Nearly every visible unit was operating in Windows 95 or Windows 98. Applications used to maintain patient information access via a web browser..IE5 or 6.
Seriously..what in the fuck??
Keith: The advertising is based on your gender, “likes” and viewing of other ads/profiles in facebook. Guess you frequent and/or like hot scantily clad girls..go figure =)
Kevin Johnson PenTesting Scripts: http://www.pentesterscripting.com/
Stories of Interest:
The latest ISSA issue covers Confessor, so we thought we would take a look at it. Confessor is a Windows Application that utilizes WMI and standard tools to quickly gather forensic information from any number of hosts. Confessor evolved from MIR-ROR and enables the investigator to gather forensic data from many hosts at once. Confessor is designed to call binaries remotely, many of those binaries are from Windows Sysinternals.
The latest ISSA issue covers MOLE. MOLE was built to answer the problem of validating many URL’s to see if malware was present. It does this simply by crawling the site (depth configurable) and determining what file types where returned (pictures, executables, compressed, text, etc). Malware checks are done using http://www.virustotal.com malware scanning system. A VirusTotal API key is requried, though it is free once you complete the registration.
Skipfish 1.78b is a fully automated, active web application security reconnaissance tool. It is high speed, has a low false positive rate, and is easy to use.
Changes: Substantial bugs in coverage and security checks were fixed. Multiple feature and stability improvements were made. Differential scanning tools were added.
American Floyd Landis, who was stripped of his victory in the 2006 Tour de France for doping, and his coach Arnie Baker have been ordered to stand trial in France for computer hacking. Landis and Baker are subject to an international arrest warrant and stand charged of “fraudulently breaking into a computer system”, according to lawyer Frederik-Karel Canoy, who is acting on the behalf of the Vivendi media company. Both Landis and Baker are suspected of illegally obtaining documentation from the French Anti-Doping Laboratory (LNDD) in a bid to contest the American rider’s positive test results from stage 16 of the 2006 Tour de France.
A Taiwanese military intelligence officer and an alleged double agent for China were in custody Tuesday as investigators probe the latest espionage scandal to hit Taiwan’s defense establishment and assess the damage to its intelligence network. The detained officer, identified by local media as Col. Lo Chi-cheng, allegedly transferred classified data over several years to a Taiwanese man linked to Taiwan’s intelligence network and who has business interests in China. The data was then allegedly passed on to Chinese intelligence, media reports said. The two suspects were arrested Sunday and their homes searched after investigators witnessed the two men allegedly exchanging classified data in a Taipei street.