I'm pretty sure we can all read the Mile2 website, no need to copy it here in a post.

Or maybe it wasn't found in some porn, maybe it was found elsewhere and these guys were just using the "found it in this porn video" excuse as their own cover up

Were you told to bring your own system to attack from or will that be provided for you?

Certainly, in addition to the technical skills, they will want to see how well you can report on it. I would recommend reading this blog post:
http://pen-testing.sans.org/blog/2012/02/09/maximizing-value-in-pen-testing

I would want to see that you can summarize the findings in a non-technical summary and that you can present the risk appropriately. I would want to see what your thought process is on how you rate risks - in other words, for this purpose, I wouldn't care what you rated findings so long as you provided thoughtful support. I would also be looking at how you tell me to fix the problem.

Well, considering metasploit doesn't officially support iPhone deployments, I think you're going to have to search around to figure it out. Where did you get the package that was installed?

Personally, I had it installed on an older iOS on my iPhone but didn't bother with it later on due to keyboard limitations. You're also likely to have problems with some of the SET features without a mail server.

On a side note, nice F-18 picture, ambient. My brother-in-law is a F-15E pilot.

Well, for one, you likely need 'session_start();' at the top of your script to even have a PHP session.

Second, use the $_COOKIE variable to grab the session identifier if that's what you're after.

I commented out your header redirect and cookie portions, rewrote with the above and echoed the session id (and your log.txt still works and writes the session ID in there).

What are you looking for?

Try /opt/framework/msf3

You should have access to various DoD-related training material. If you're current position qualifies or considers you as IA then there are different things out there. You may want to look into the CERT VTE as well. Lots of good training there that may be free for you (CISSP, SSCP, Sec+, Net+, CEH and a whole host of others).

Not free (and no idea how well it works) but happened to see this in the SkyMall magazine on my flight yesterday:

http://www.skymall.com/shopping/detail.htm?pid=203635521&c=

edit: lol.. just noticed the small text at the bottom that says 'up to iOS 3.21'

As I'm sure you expect, having lingered around for a while, we're all anxious to welcome you to the community.

Sounds like you're well on your way and starting down a path. Do you currently work in IT or is this just a hobby/interest of yours that you'd like to eventually make a career?

Feel free to shout with any questions. All sorts of people willing to help out here.

Bill

This link contains everything you'd ever need to know about Wireshark:

Wireshark

Welcome to EH-Net.

BackTrack is pretty well organized in that you can look through the menu or sift through the directories to find both 'network' and 'web' attack tools.

We can help you once you have specific questions.

You may want to take a look at these two sites:
BackTrack Forums
BackTrack Wiki

You may also have an interest in this:
Samurai WTF (Web Testing Framework)

Wow, that was a lot to read :-)

First, welcome to EH-Net.

Ironically, I was recently talking to someone that had similar (not quite the same, but similar) issues. They also have an AirPort Extreme and, within the past couple weeks, started having many problems with their wireless connections. My suggest was to reset the device to default factory settings and see if that fixed it (I haven't heard back yet).

Seeing as how that's what you did, and it fixed your first problem, maybe there's something buggy going on with that device.

The 169.* address you're seeing is called an Automatic Private IP Address (APIPA) and is typically assigned when no static or dynamic IP address is available. Usually as is the case when you try to connect two computers directly to each other without configuring network settings.

You can use a tool such as Kismet, Ekahau, or I'm sure there's a utility for iPhone to help you locate the the device broadcasting the old SSID (assuming it's not one of your devices). You can easily get the MAC address and compare to your stuff if you think it is for some reason but it sounds as though you only have the one access point. Or just power down all of your devices except a laptop to see if it's still broadcasting.

You could try and connect to it and see what happens. Maybe it's configured to hand out 169.* IP addresses. If that's the case, you'll see that it connects quickly. If not, it'll take some time, think about it, and then assign the 169.* IP when it can't get one. If it assigns it to you, you could attempt to run Nmap and scan the local range to see if anything replies (may or may not).

I think those would be the first two things to find out, then you can go forward with your other questions. Certainly, if it is someone trying to intercept your communications, if you can't browse to a website or connect to anything, then you can't really pass credentials across. They could, possibly, attack your systems once they are connected though.

Or, it could all just be a bug with your Apple AirPort Express ;-)

Hope that's helpful, it's too early for a long post.

Yeah, I noticed (and replied to) that post as well. I'm not sure where they are getting their information.

I have not heard anything either way. I would think that in order to align with the updated exam, the courseware will have to change. Maybe they'll keep most/all of it and add in parts that need to be included. Maybe they'll scrap it all and rewrite it. I honestly don't know.

If I were to make a guess, it will be (unfortunately) very similar to v7 with some minor changes. At which point, I don't know how that puts your chances for passing the exam. I would have to look through the v7 courseware and see how close it actually is to the new v8 exam.

A mix... Nessus, Qualys, Nexpose. Scans are conducted on whatever is in scope.

The v8 exam was released as a beta at the beginning of the year (actually, may have been towards the end of last year). To my knowledge, it's supposed to be available now (which is what the ANSI accreditation is based on).

The v7 exam will not be retired until January 31, 2013 due to the v8 courseware not being released until this fall (sometime around Hacker Halted). Normally, it's 6 months from the release of the upgraded version of the exam but because the exam has been rolled out before the courseware, an extension has been granted.