Free webcast on Understanding and Fighting Malware: Viruses, Spyware and Rootkits (Level 300) by Mark Russinovich, Chief Software Architect and Co-founder, Winternals Software, LP.

http://www.microsoft.com/events/EventDetails.aspx?CMTYSvcSource=MSCOMMedia&Params=%7ECMTYDataSvcParams%5E%7Earg+Name=%22ID%22+Value=%221032274950%22/%5E%7Earg+Name=%22ProviderID%22+Value=%22A6B43178-497C-4225-BA42-DF595171F04C%22/%5E%7Earg+Name=%22lang%22+Value=%22en%22/%5E%7Earg+Name=%22cr%22+Value=%22US%22/%5E%7EsParams%5E%7E/sParams%5E%7E/CMTYDataSvcParams%5E

Don

Book Review and Sample Chapter - "The Art Of Intrusion" By Kevin Mitnick

http://www.ethicalhacker.net/content/view/22/2/

Member Feedback.

Book Review and Sample Chapter - "Counter Hack Reloaded" By Ed Skoudis

http://www.ethicalhacker.net/content/view/23/2/

Member Feedback.

A private security outfit has released a proof-of-concept exploit for a security flaw in Firefox 1.5, warning that the code can be modified to launch code execution attacks.

However, officials at the Mozilla Foundation are downplaying the threat, insisting the bug is more of an "annoyance" than a serious security vulnerability.

The exploit, which was posted on the PacketStormSecurity.org Web site, targets a buffer overflow in Firefox 1.5, the newest browser release from Mozilla.

The exploit has been confirmed on Firefox 1.5 on Windows XP SP2 (Service Pack 2) and is caused by an error in the way the open-source browser handles large history information.

A successful attacker can fill the browser's "history.dat" file with large history information by tricking a user into visiting a malicious Web site with an overly large title.

For full story:
http://www.eweek.com/article2/0,1895,1898253,00.asp

Don

WASHINGTON (Reuters) -- Terrorist groups lack the capability to launch a damaging Internet-based attack on the United States but foreign governments are probably behind many online spying attempts, FBI officials said on Wednesday.

Al Qaeda and other militant groups do not have the ability to disable power plants, airports and other "critical infrastructure" through the Internet, said FBI Assistant Director Louis Reigel, who heads the enforcement agency's Cyber Division.

"There's nothing on my desk today or the director's desk that would cause any concern today," Reigel told reporters in a briefing at FBI headquarters.

For full story:
http://www.cnn.com/2005/TECH/internet/12/08/cyber.attack.fbi.reut/index.html

Don

If you are not a regular here or at CSP Mag, then you will soon find out that I am a huge fan of CBT Nuggets. These are the little videos that could. They may not have great packaging, a huge advertising budget and the production value is simplistic. But don't let this fool you. These videos not only give you exactly what you need to help you pass the exam you're pursuing, but they are also some of the most inexpensive in the industry and worth your time... and money. Also, if you can't afford live, instructor led classes, this is the next best thing.

But don't take my word for it, CLICK HERE to try them for yourself for free.

CISSP, Security+, Microsoft, Cisco, CWNA, Citrix, LPIC and more. CEH coming early next year! Share your own thoughts on CBT Nuggets.

Don

I know this is old news to us that follow CEH, but it's worth mentioning here so that others know that this exam will be more widely available than in the past. Beginning October 2005, they will be available throughout the global network of over 3,700 Pearson VUE® Authorized Centers in 145 countries.

http://www.vue.com/about/release/05_09_16_eccouncil.html

Don

Article Title - "Making Testing Easier With BiDiBLAH"

http://www.ethicalhacker.net/content/view/20/24/

Member Feedback

Book Review and Sample Chapter - "Real Digital Forensics: Computer Security and Incident Response" By Keith Jones, Richard Bejtlich, Curtis W. Rose

http://www.ethicalhacker.net/content/view/19/2/

Member Feedback.

Exploit code for a critical flaw in fully patched versions of Microsoft Corp.'s Internet Explorer browser has been released on the Internet, putting millions of Web surfers at risk of computer hijack attacks.

The zero-day exploit, posted by a U.K.-based group called "Computer Terrorism," could allow a remote hacker to take complete control of a Windows system if the victim simply browses to a malicious Web site.

Ziff Davis Internet News have verified that the exploit works on fully patched Windows XP systems with default IE installations.

For full story:
http://www.eweek.com/article2/0,1759,1891749,00.asp?kc=EWRSS03119TX1K0000594

Don

Article Title - "Incident Response Checklist"

http://www.ethicalhacker.net/content/view/18/2/

Member Feedback

Some of you may find this interesting. The OSSTMM describes itself as:

The OSSTMM focuses on the technical details of exactly which items need to be tested, what to do before, during, and after a security test, and how to measure the results. New tests for international best practices, laws, regulations, and ethical concerns are regularly added and updated.

http://www.isecom.org/osstmm/

Let me know what you think,
Don

The makers of Winfingerprint, the tool recommended by SANS and on the Insecure.org Top 75 Security Tools list, has launched a new site (Mambo BTW) and will soon have a new shareware version. While you're there, also check out Wininterrogate.

From http://www.winfingerprint.com
Winfingerprint is a Win32 MFC VC++ .NET based security tool that is able to Determine OS, enumerate users, groups, shares, SIDs, transports, sessions, services, service pack and hotfix level, date and time, disks, and open tcp and udp ports.

Pretty cool way to keep tabs on your Windows network.

Don

Foundstone has a number of free resources including some great free tools. Here's a list:

Assessment Utilities
  Fpipe™ v2.1
Forensic Tools  
  Remote Forensics System v1.0
  Pasco v1.0
  Galleta v1.0
  Rifiuti v1.0
  NTLast™ v3.0
  Forensic Toolkit™ v2.0
  ShoWin™ v2.0
  BinText™ v3.0
  PatchIt™ v2.0
  Vision™ v1.0
Foundstone S3i™ Tools
  Hacme Books™  v1.0
  Hacme Bank™  v1.0
  .NET Security Toolkit    NEW!!! v1.0
  .NETMon™  v1.0
  Validator.NET™  v1.0
  SecureUML Template  v1.0
  WSDigger™    NEW!!! v1.0
  CookieDigger™    NEW!!! v1.0
  SSLDigger™  v1.02
  SiteDigger™ v2.0
Intrusion Detection Tools
  IPv4Trace v1.0
  Carbonite™ v1.0
  FileWatch™ v1.0
  Attacker™ v3.0
  Fport™ v2.0
Scanning Tools 
  SuperScan™ v4.0
  MS05-051 Scan    NEW!!! v1.0
  MS05-039 Scan v1.0
  NetSchedScan v1.0
  DSScan v1.0
  MydoomScanner v1.0
  MessengerScan v1.05
  SQLScan v1.0
  BOPing™ v2.0
  ScanLine™ v1.01
  Trout™ v2.0
  DDosPing™ v2.0
  SNScan™ v1.05
  CIScan v1.0
  RPCScan v2.03
Stress Testing Tools
  FSMax™ v2.0
  Blast™ v2.0
  UDPFlood™ v2.0

http://www.foundstone.com/resources/freetools.htm

Never heard of them, used them once, permanent addition of your toolbox... Share your thoughts.

Don

Since we have a post with a link to a tutorial for password cracking:

http://www.ethicalhacker.net/component/option,com_smf/Itemid,35/topic,23.0

It's only right for us to to tell you where to get Cain & Abel:

http://www.oxid.it

Have fun!
Don