|
Title: Penetration Testing Ninjitsu Post by: BillV on February 20, 2008, 07:00:49 PM I received this in my email today and thought I'd pass it along here for all those interested. It definitely sounds like it'll be something worth listening to.
Quote ------------------------------------------------------------------------------ WEBCAST “Penetration Testing Ninjitsu” with Ed Skoudis of SANS Wednesday, February 27 at 2:00 PM EST (GMT -5:00, New York) http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu (http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu) **Register to receive 20% off an upcoming SANS penetration testing course. Attend for your chance to win free tuition! (see below for details) ------------------------------------------------------------------------------ Do you know how to create an automated, iterative reverse DNS lookup tool in a single Windows command? How about a ping sweeper in a single Windows command? A password guesser? Please join Core Security and Ed Skoudis, SANS instructor and founder of Intelguardians, to learn about these penetration testing techniques and more in this not-to-be-missed webcast: “Penetration Testing Ninjitsu” **Register here: http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu (http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu) We’ll begin by looking at some of the motivations for proactively identifying and exploiting security flaws before the bad guys do – and then take a deep dive into useful tips that you can use in your own testing initiatives. Specifically, you’ll learn techniques for leveraging the Windows command shell on a compromised machine to scan and test other systems on the network. This all-new take on Skoudis’ popular “Windows Command-Line Kung Fu” presentation is specially focused on penetration testing. Whether you’re a red team member, a finder and fixer, or a third-party consultant, this webcast is sure to add to your security testing toolkit. Register and receive 20% off an upcoming SANS penetration testing course. One webcast attendee will also win free tuition to the next course at SANS 2008 in Orlando – a $3,695 value! **Register here: http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu (http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu) Hope some of you attend as well :) Bill Title: Re: Penetration Testing Ninjitsu Post by: bigwhiff on February 20, 2008, 07:12:58 PM Bill,
You got that on the board quick. I was just reading through the email message when the Ethical Hacker Forum notified me of this porting. I would like to tell everyone that if you have never had a class with Ed Skoudis it truly is a pleasure. In addition this webcast is FREE! Ya can't beat free. -jack Title: Re: Penetration Testing Ninjitsu Post by: g00d_4sh on February 20, 2008, 07:56:42 PM Heh... yeah I'm already signed up for that. I got that email earlier today as well. Since they're planning to give it out to people who attend the webinar, I was planning on sending the presentation to anyone interested.
Title: Re: Penetration Testing Ninjitsu Post by: ChrisG on February 20, 2008, 08:42:46 PM Quote ------------------------------------------------------------------------------ Do you know how to create an automated, iterative reverse DNS lookup tool in a single Windows command? nope but i can do it in bash... #!/bin/bash cat iprange.txt | while read IP; do echo ${IP} && host ${IP} nameserverIP; done >> hostoutput.txt Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 27, 2008, 12:51:20 PM This webinar is starting within the next 10 minutes... anyone else attending?
Title: Re: Penetration Testing Ninjitsu Post by: don on February 27, 2008, 01:51:34 PM I'm on.
Don Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 27, 2008, 01:56:35 PM Reminds me a lot of the 'Frosty the Snow Crash' challenge :)
That's the first time I've heard a presentation by Ed Skoudis. He sounds like an excellent instructor and I'm definitely going to look into taking this course sometime in the future (as I'm sure it's quite costly). Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 27, 2008, 02:26:44 PM That was a great webinar... I'm looking into the course now, it definitely sounds like something worth taking. Does anyone know if SANS offers financing for classes? Off to check the site... :)
Title: Re: Penetration Testing Ninjitsu Post by: g00d_4sh on February 27, 2008, 02:44:53 PM It was definately interesting to listen to. I had wondered at the easiest way to create a ping sweeper/hostname resolver via command line. That's kind of nifty. I guess personally I wish he would have been able to spend more time on other little nifty 'meats and potatos' techi things like that, but if he did we wouldn't be as motivated to pay for the class if we heard it all eh? Yeah, he sounds like a great teacher, that was worth my time.
Title: Re: Penetration Testing Ninjitsu Post by: rance on February 27, 2008, 04:35:58 PM Bummer, missed this one. Looks like it would have been a neat one to attend.
Title: Re: Penetration Testing Ninjitsu Post by: nebu10uz on February 27, 2008, 06:13:45 PM Hey rance, I think I heard that this presentation was being recorded so you could probably view it later. This was the first time I heard Skoudis speak live and I must say that this guy can teach and at the same time make it real entertaining. Looking forward to his second webcast (3 part series) on May 20th. Title: Re: Penetration Testing Ninjitsu Post by: Mr. Roboto on February 27, 2008, 11:22:08 PM Hey rance, I think I heard that this presentation was being recorded so you could probably view it later. Anyone know where they'll post the presentation? It doesn't seem to be online yet. Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 28, 2008, 08:14:49 AM I'm not sure, but they should be sending an email to the attendees with that information. I'm sure one of us will post it once received.
Title: Re: Penetration Testing Ninjitsu Post by: Andrew Waite on February 28, 2008, 08:29:52 AM I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).
Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out. If I hear anything else or get a link I will let you all know Title: Re: Penetration Testing Ninjitsu Post by: Dengar13 on February 28, 2008, 09:03:24 AM I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended). Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out. If I hear anything else or get a link I will let you all know Thanks. I too was unable to attend and would like to review it as well. Title: Re: Penetration Testing Ninjitsu Post by: Andrew Waite on February 28, 2008, 09:21:54 AM Hi All,
I've just heard back, a recording should be available to those who registered in a few days. Watch your inbox ;) Title: Re: Penetration Testing Ninjitsu Post by: rance on February 28, 2008, 09:57:16 AM Hi All, I've just heard back, a recording should be available to those who registered in a few days. Watch your inbox ;) ...and we'll be watching this board! ;) Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 28, 2008, 04:56:22 PM Webcast Recording: click here (https://coresecurity.webex.com/coresecurity/lsr.php?AT=pb&SP=EC&rID=4214202&rKey=32920A3595EA5972)
Slide Presentation: click here (http://www.coresecurity.com/files/attachments/Core_Define_and_Win_Cmd_Line.pdf) Title: Re: Penetration Testing Ninjitsu Post by: Dengar13 on February 28, 2008, 04:57:45 PM Webcast Recording: click here (https://coresecurity.webex.com/coresecurity/lsr.php?AT=pb&SP=EC&rID=4214202&rKey=32920A3595EA5972) Slide Presentation: click here (http://www.coresecurity.com/files/attachments/Core_Define_and_Win_Cmd_Line.pdf) Good deal, thanks! Title: Re: Penetration Testing Ninjitsu Post by: don on February 28, 2008, 05:00:58 PM Wow... you guys are fast. I literally got the email 2 minutes ago, and it is already posted.
Must say, I'm truly enjoying the participation on EH-Net over the past couple months. I'm humbled and excited. Keep it up, because, as you've seen, top contributors get rewarded. ;) And who knows... it could even be a GPEN course. Hmmmmmmmmm. Don Title: Re: Penetration Testing Ninjitsu Post by: BillV on February 28, 2008, 05:21:54 PM Be quick or be 0wn3d ;D
Don is such a tease :P ... and you're welcome Title: Re: Penetration Testing Ninjitsu Post by: Mr. Roboto on February 28, 2008, 10:27:09 PM And who knows... it could even be a GPEN course. Hmmmmmmmmm. Don I would give my right arm for a crack at that course! Wonder how much that would go for on Ebay? Title: Re: Penetration Testing Ninjitsu Post by: Dengar13 on February 29, 2008, 05:09:57 AM And who knows... it could even be a GPEN course. Hmmmmmmmmm. Don I would give my right arm for a crack at that course! Wonder how much that would go for on Ebay? I'd put a bid in... ;D Title: Re: Penetration Testing Ninjitsu Post by: ChrisG on February 29, 2008, 07:33:42 PM watched the webcast, that was pretty good. looking forward to the next one.
anyone know the scoop on the pen test summit on if you pay for a class you get in the summit for free or what? otherwise its a buttload of money
Powered by SMF 1.1.16 |
SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com |