Most Recent Additions to The Ethical Hacker Network, the best, single source of educational content for forensics, pen testing and incident response. Hacker Challenges with prizes, free monthly giveaways, tutorials, articles, forums, certification info and more. http://www.ethicalhacker.net 2009-07-04T21:11:03+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/images/M_images/ehnet_banner1.jpg text/html 2009-07-01T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/262/2/ Review by Ryan Linn, CISSP, MCSE, GPEN “Gray Hat Python” by Justin Seitz, one of the latest releases from publisher, Python programming language (http://www.python.org) for reverse engineering. This book is subtitled “Python Programming for Hackers and Reverse Engineers” which is fitting as Justin is a member of Immunity Security (http://www.immunitysec.com), makers of the Canvas penetration testing platform and the Immunity Debugger. The foreword by Dave Aitel, Immunity's CEO, is an excellent introduction to why the content of this book is important. It focuses on the short time span that is required from discovery of a bug to... text/html 2009-06-30T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/261/8/ Win Your Choice of iClass Worth $2895! Certified Ethical Hacker seat delivered via its iClass format (http://iclass.eccouncil.org/index.php?option=com_content view=article id=69 Itemid=102), both concerns have been taken care of for you. iClass is EC-Council’s live, online, instructor-led training modality! There are two delivery formats: 1. FlexClass: This schedule is designed to spread the learning out over a period of time and avoid missing a full week’s worth of work. The times are 4pm – 8pm, MST twice a week for 5 weeks. 2. iWeek: This schedule is similar to the standard 5 day format found at the majority of training centers. The times... text/html 2009-06-15T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/260/24/ This review is long overdue. My apologies to EH-Net readers, SANS and especially Joshua Wright, developer and instructor of SEC 617 - Wireless Ethical Hacking, Penetration Testing, and Defenses (http://www.sans.org/info/34528). Its lateness is more due to my inability to comprehend exactly what I experienced than to a lack of desire to complete the task. I honestly sat down at the keyboard multiple times, but each time I felt I wasn’t doing the course or Mr. Wright justice. OK… so like every other SANS course, it had quality courseware, the instructor was top-notch, and I walked away with much more knowledge... text/html 2009-06-11T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/259/24/ IronKey Personal (https://www.ironkey.com/personal), I knew I was going to rip it apart. I was going to write a scathing review of how terrible their product is and why these “gimmicky” pieces of hardware don’t work. Because they usually don’t. del.icio.us Discuss in Forums text/html 2009-06-01T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/258/8/ Win Ticket to Black Hat USA = $1595!! Black Hat USA (http://www.blackhat.com) on us, EH-Net. The world's premier technical event for ICT security experts is being held July 27 - 28, 2009. Featuring hands-on training courses and Briefings presentations with lots of new content. Network with thousands of delegates and review products from leading vendors in a relaxed setting, including Sustaining Sponsors Core Security, IOActive, Microsoft, Norman, Qualys and SAINT. At stake is a Passport Admission Ticket worth $1595 ($1995 at the door) that allows entry into the Briefings portion of the event. This year's venue is again Caesars Palace in... text/html 2009-05-30T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/257/2/ Review by Jason Haddix, Security Aegis (http://www.securityaegis.com/) Anyone who knows training (or InfoSec for that matter) knows SANS is probably THE most recognized name in InfoSec training. While the foundation of SANS is Stephen Northcutt and Alan Paller, his superstars are the InGuardian’s crew. Call them security divas, we don’t care. We know that Ed Skoudis, Kevin Johnson, Mike Poor, and Joshua Wright are instructors with whom we’d give the whole of our security budget to train. We can’t decide what we like best: their stellar tool development, their helpful whitepapers, their nifty cheat sheets, their open source projects, or... text/html 2009-05-29T15:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/256/8/ CBT Nuggets (http://www.cbtnuggets.com/CSPCOM) fit the bill perfectly. For those of you who don't know, CBT stands for computer based training. CBT Nuggets are series of 30 - 60 minute chunks... or nuggets... of videos each covering a given topic on the certification of your choosing. It makes it easy and engaging to study for your certs without the need to travel or complete your studies on someone else's time frame. CBT Nuggets are also very cost effective without flashy productions. They concentrate on just providing the info you need at prices anyone can afford. Topics include CISSP, CEH, CISA, Microsoft,... text/html 2009-05-28T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/255/2/ Review by JP Bourget, CISSP, MCSE, MS Having a process to better understand your logs, be it firewall, packet captures, IDS, web server, or proxy logs, is something that many security professionals strive for. We have seen some interesting software over the past few years, such as OSSIM (http://www.ossim.net/) and Splunk (http://www.splunk.com). Some vendor’s provide excellent log visualization for their products, some don’t do enough, or aren’t flexible enough. That brings along Applied Security Visualization (ASV) by Raffael Marty. Marty’s book gives some valuable insight on how to bridge the fields of IT Security and Data Visualization all in one... text/html 2009-04-29T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/254/24/ SEC542 Web App Penetration Testing and Ethical Hacking (http://www.sans.org/info/34523) as a 6-day course with stronger hands-on exercises and culminating with a final day where students perform a penetration test on the classroom network. The original course was a 4-day version, but Kevin Johnson of InGuardians (http://www.inguardians.com/) has updated and enhanced the content to contain many of the cutting-edge web application hacking techniques seen in the field today. I recently had the opportunity to take the re-born SEC542 course in Orlando, Florida as part of the SANS 2009. SANS 2009 was one of the larger yearly conferences that SANS... text/html 2009-04-15T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/253/2/ In Part I, Modern Social Engineering - A Vital Component of Pen Testing (content/view/242/2/), Chris Nickerson Mike Murray adeptly covered the generalities of Social Engineering, and how it is a repeatable process perfect for inclusion in penetration testing. So let’s go a little deeper into crafting these attacks. What are some of the tricks of the verbal trade that make people far more likely to fall prey to those phishing attacks or that fraudulent web site? What tools can I use to test and eventually utilize to attack… er… audit my target organization? This 1-hour webcast dives deeper... text/html 2009-04-14T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/252/2/ Review by Jason Haddix, Security Aegis (http://www.securityaegis.com/) Nmap is indispensable. OK, that was obvious. There is no doubt that Fyodor and contributors have made the de-facto standard of network scanners, but when it comes down to learning the ins and outs and the power of Nmap (http://www.nmap.org), where should you put your hard earned cash? Let’s neglect the support documentation (man pages) for a second, and assume you don’t really use Nmap on a day-to-day basis. Why? Over at http://www.professormesser.com/ (http://www.professormesser.com/), James “Professor” Messer has put together a 232-page eBook proving that one doesn’t have to be a networking guru... text/html 2009-04-06T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/251/24/ Maltego Part I (content/view/202/24/) we performed Personal Reconnaissance with Maltego to see what we could find out on the net about our Editor-in-Chief, Don. With the personal details tucked safely away in our notebook, lets see what we can gather in regards to his network infrastructure. Any organization that has an Internet presence needs to have some form of infrastructure to support their presence. During Infrastructure Enumeration you attempt to discover how much of it exists, what type of infrastructure is used, where it is located, what technology is used and how it is structured. This type of information... text/html 2009-04-05T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/249/24/ Pass-The-Hash Toolkit by Core Security (http://oss.coresecurity.com/projects/pshtoolkit.htm). Core describes it as, The Pass-The-Hash Toolkit contains utilities to manipulate the Windows Logon Sessions mantained by the LSA (Local Security Authority) component. These tools allow you to list the current logon sessions with its corresponding NTLM credentials (e.g.: users remotely logged in thru Remote Desktop/Terminal Services), and also change in runtime the current username, domain name, and NTLM hashes (YES, PASS-THE-HASH on Windows!). So what does all that mean? As with his other videos, Ryan tackles this topic in a very easy to follow process. So watch along as he integrates... text/html 2009-04-01T02:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/248/8/ CBT Nuggets (http://www.cbtnuggets.com/CSPCOM) fit the bill perfectly. For those of you who don't know, CBT stands for computer based training. CBT Nuggets are series of 30 - 60 minute chunks... or nuggets... of videos each covering a given topic on the certification of your choosing. It makes it easy and engaging to study for your certs without the need to travel or complete your studies on someone else's time frame. CBT Nuggets are also very cost effective without flashy productions. They concentrate on just providing the info you need at prices anyone can afford. Topics include CISSP, CEH, CISA, Microsoft,... text/html 2009-03-23T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/247/8/ InGuardians (http://www.inguardians.com/) during discussions hosted by The Ethical Hacker Network (EH-Net), a free online magazine for security professionals. For at least one week after each webcast, the crew will make themselves available to answer your questions directly and candidly in EH-Net’s Community Forums. All discussions will remain freely available on EH-Net for your continued reference. del.icio.us Discuss in Forums text/html 2009-03-20T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/245/24/ It's a fact, Jack. Nearly 100% of social engineering engagements will involve the use of language. Yes, that was trite and obvious. But it's also true. Which means that if you want to engage an organization or individual as a target for a social engineering attack, your ability to use language will be a significant factor in the success or failure of your attack. Even more precisely, you have to know the different ways that language can be used, and the differences in the language patterns and formats for each of those uses. Only then will you be empowered to... text/html 2009-03-19T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/246/8/ Offensive Security (http://www.offensive-security.com/training.php), the people behind OSCP (content/view/119/3/)) as well as the BackTrack WiFu Package Deal (Course and cert try for OSWP). Remember to Cracking the Perimiter (http://www.offensive-security.com/ctp.php) (previously known as BackTrack to the Max ) in an online version coming to screens near you later in 2009!! del.icio.us Discuss in Forums Participation is the ONLY way to win. Start a thread that sparks lots of interest; share thoughts and experiences; help a newbie... quality is more important than quantity. Only members are eligible! Registration Is FREE! text/html 2009-03-18T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/244/2/ Review by JP Bourget, CISSP, MCSE, MS Once again, my company had acquired some new networks for us to take over, and of course, the documentation was from 3 years ago. As part of our due diligence, I had to quickly and accurately figure out everything on the network. How did I accomplish this? With a network mapping utility; and the de facto standard in this area is Nmap! Nmap by Gordon Lyon AKA Fyodor not only saves you time, but, if you really know how to unleash it’s power, it can be your friend for network audit’s, discovering new... text/html 2009-03-17T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/243/2/ Shellcoder's Handbook (http://www.amazon.com/gp/redirect.html?ie=UTF8 location=http%3A%2F%2Fwww.amazon.com%2FShellcoders-Handbook-Discovering-Exploiting-Security%2Fdp%2F0764544683%3Fie%3DUTF8%26s%3Dbooks%26qid%3D1178082795%26sr%3D1-6 tag=thedigitalcon-20 linkCode=ur2 camp=1789 creative=9325) fame spoke at ChicagoCon last year on heap overflow exploitation, so we thought we'd share the entire audio recording and slide deck with you as an example of the type of talks you'll see at the next ChicagoCon in May 2009 (http://www.chicagocon.com). As defined by Wikipedia (http://en.wikipedia.org/wiki/Heap_overflow), A heap overflow is a type of buffer overflow that occurs in the heap data area. Like all buffer overflows, a heap overflow may be introduced accidentally by an application programmer, or it may result from a deliberate exploit. In either case, the... text/html 2009-03-11T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/242/2/ In the very first webcast produced by The Ethical Hacker Network, world-renowned social engineers, Chris Nickerson of TruTV's Tiger Team and noted expert and international speaker, Mike Murray, prepared you for the future of pen testing. For those of you who couldn't attend the live event, here's the webcast in its entirety. Don't forget to look for the coupon code special pricing announcement for Chris Mike's Social Engineering Master Class (http://www.chicagocon.com/2009s/semasterclass.html) to be held for the very first time at ChicagoCon 2009s May 4 - 8 (http://www.chicagocon.com). The webcast took place on March 10 and was... text/html 2009-02-26T01:07:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/239/24/ Mike Murray was also at the last ChicagoCon in the fall of 2008. Since he is now going to be a regular columnist on The Ethical Hacker Network, this seems like an appropriate place to publish the slide deck and audio recordings from his talk. If you've never heard Mike speak on Social Engineering, then you're in for a treat. Not only will you be entertained but also educated. The description of the talk is as follows: Information security has seen some major changes in the paradigms of attackers through the past 15 years. From the early days... text/html 2009-02-26T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/238/24/ There are numerous tools used in the Penetration Testing (pen testing) process, and there are plenty of books that go into how to use the individual tools. There are very few resources that discuss how the tools are used and how to approach the process. Parts 1 and 2 encompass the basic outline of what was presented at a talk given to the Duke University ACM Chapter with some minor changes. In Part 1 (content/view/227/24/), we took the viewer through the initial network recon stage through actual exploitation using Metasploit. Initially the network is scanned through Nmap,... text/html 2009-02-24T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/236/24/ The first time I gave this speech was at the SANS WhatWorks in Pen Testing Summit in 2008. Although the content was what I wanted to cover, I did tone it down it bit for the audience. I had a strong desire to do the talk again in the future, but had no intention on presenting at my own event, ChicagoCon (http://www.chicagocon.com). I must admit, that it didn't take too much arm twisting from some of the other EH-Netters to get me back to the podium. So last fall at ChicagoCon 2008f (http://www.chicagocon.com/medialab/ethical-hacking-conference-2008f.html) (yes... that's what the 'f' is for),... text/html 2009-02-20T17:47:11+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/235/2/ The world of Information Security is changing. Budgets are tighter, attacks are more sophisticated, and the corporate network is no longer the low hanging fruit. That leaves web-enabled applications as the vector-du-jour, but that well is quickly drying up for organized crime as well. As they creep up the OSI Model looking for easier ways to steal your corporate assets, they are quickly making their way up the stack to the unspoken 8th layer, the end user. So what is the next step in the never-ending escalation of this cyber war? To find out, we must do as Sun Tzu... text/html 2009-02-05T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/234/2/ Challenge Extended until March 16! Dearest challenge fans, We've got a special treat for you this time around. Josh Wright of InGuardians has created a simply fantastic challenge based on the beloved 1970's TV show, _The_Brady_Bunch_. I grew up watching the Brady's crazy antics again and again in re-runs, and love how Josh has interweaved the show's lore throughout his challenge. But, even if you aren't into the Bradys, there is so much gee-whiz technical awesomeness here, you really should work through this one, my friends. Josh's funk is multi-layered, and there is a bunch to be learned by all... text/html 2009-02-03T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/219/24/ By Chris Gates, CISSP, GCIH, C|EH, CPTS It should be obvious to everyone that the bad guys are moving away from network level attacks and moving toward social engineering coupled with ChicagoCon (http://www.chicagocon.com) in May, where I will be presenting this exact topic live. Penetration testers need to be able to help an organization detect and respond to client-side attacks, and what better way to do that than to do a little client side exploitation during your pentests. A new mixin has been added to the Metasploit Framework that allows the penetration tester to create and output the files that contain... text/html 2009-02-02T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/233/8/ Offensive Security (http://www.offensive-security.com/training.php), the people who brought you OSCP (content/view/119/3/)) as well as the BackTrack WiFu Package Deal (Course and cert try for OSWP). Remember to Cracking the Perimiter (http://www.offensive-security.com/ctp.php) (previously known as BackTrack to the Max ) in an online version coming to screens near you later in 2009!! del.icio.us Discuss in Forums Participation is the ONLY way to win. Start a thread that sparks lots of interest; share thoughts and experiences; help a newbie... quality is more important than quantity. Only members are eligible! Registration Is FREE! text/html 2009-02-01T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/231/8/ Yet Another Winner! Black Hat DC (http://www.blackhat.com) on us. The Washington, DC version of the world's premier technical event for ICT security experts is being held February 18 - 19, 2009. Featuring hands-on training courses and Briefings presentations with lots of new content-including two full tracks of presentations around the theme of Attack and Defense. Network with 400+ delegates and review products from leading vendors in a relaxed setting, including Diamond sponsor Microsoft. This should be a great incentive to really get those forums hopping with participation. At stake is a Passport Admission Ticket worth $1395 that allows entry... text/html 2009-02-01T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/232/8/ We Have a Winner! Network Pen Testing and Ethical Hacking (SANS 560) (http://www.sans.org/info/27089) getting rave reviews, but also it is now being offered in the @Home version. The @Home format is not just recorded webcasts and handouts... You actually get live virtual instruction from Ed Skoudis and John Strand. See below for more details. This is great for a couple reasons. First, and quite obviously, many are feeling the pinch with the economy, and we all know training and travel are the first items to be cut from the budget. So if you're the lucky winner, we'll provide the training, and... text/html 2009-01-21T01:00:00+01:00 http://www.ethicalhacker.net http://www.ethicalhacker.net/content/view/227/24/ There are numerous tools used in the Penetration Testing (pen testing) process, and there are plenty of books that go into how to use the individual tools. There are very few resources that discuss how the tools are used and how to approach the process. When Henry Qin at the Duke University ACM Chapter approached EthicalHacker.net on doing a presentation for his organization on the tools and process of pen testing, I jumped at the opportunity. The following videos encompass the basic outline of what was presented at Duke with some minor changes. The first video takes the...