Thanks!! Just doing some research on some web exploits.   I saw that Jhaddix provided some info but the link didn't work.  Thanks again. Hopefully it is something else I can use in the OSCP course.  =-)

Does anyone have a copy of that pdf?  The link is down: http://www.wtfchan.org/~evil1/Web-Shells-rev2.pdf. 

Hey guys,

I was just wondering, what are people here telling their customers after a pentest of mobile devices?  Should they disable bluetooth all together?  Create complicated 5 pin codes?  Encrypt them if applicable? Add antivirus where applicable?  It just seems like there are so many attack vectors with the mobile devices, it would be hard to nail down a secure way for all customers to use them 24-7.  Not to mention, the browser being vulnerable.  Just curious since I see so many companies now going to IPhones, Ipads, and Androids.  Thanks.

Unfortunately, I arrived late to the Security B-Sides Delaware conference, to my first conference no less. Long story.  Anyway, it was great to see so many smart people presenting information.  They had two conference rooms and a main auditorium.  Some of the presenters were Jason Ross, Marcus Carey, Dave Marcus, Scott Hazel, Michael “theprez98” Schearer and “Grecs”.  For those who could not attend, they have been posting video of the conference online.  I saw a couple of people tweet (hxxp://www.ustream.tv/channel/security-bsides-delaware-track-1), (hxxp://www.ustream.tv/channel/security-bsides-delaware-track2) and (hxxp://www.vimeo.com/16585113). 


The four talks I got to see were Lockpicking, Pwn an ISP in 10 Minutes, Intro to ShoNuff and Social Engineering for Non-Penetration Testers.   I have always thought about how important it is to have physical security and the lockpicking class proved it.  Dr. Robert Tran spoke on the basic locks such as tumblers and wafers and how to unlock them.  It should not be that simple to unlock these.  If you guys are curious, his group’s site is (hxxp://toool.us).  You can actually buy tool sets on their site.  Very cool.  He used rakers, half diamond, and hook tools.  You see it on TV all the time, but it was incredible to see it in person.  He explained it is all about light pressure.  Oh, and before I forget two rules: don’t try to pick a lock that you don’t own and don’t pick a lock that you rely on!  I am glad he said that, I was ready to try to lockpick my front door the minute I could.  It would really suck to have to replace my door lock because I got overzealous.  =-)


Next, SHODAN!! The speaker was “theprez98” and he talked about the Shodan Search Engine (hxxp://www.shodanhq.com).  It is not your Google search engine.   It gives info such as the IP address, hostname, port numbers, and OS versions of devices on the Internet.  It is very powerful.  He did a demonstration of how easily you can search for a Cisco device that has no protection and allows “level 15” permission over the device.  It was scary stuff and definitely worth a look of his video. 

 
Next up, ShoNuff!  We didn’t get to see a demonstration of ShoNuff due to some technical difficulties but Jason Ross still gave us the overview of it.   The site is (hxxp://whoisthemaster.org:8080/).  It basically does a super WHOIS of an organization.  It provides the network IP address range of the company and even ties to Shodan using the new API of Shodan.  It seems to me it is invaluable when you are doing passive recon work for a penetration test.  It is amazing that this started from curiosity and the scarcity of the IPv4 addresses available.


Lastly, I sat in on the social engineering demonstration by Scott Hazel.  He basically answered the question, “How do I practice social engineering when I am not doing a penetration test and I don’t want to get shot?”  It is a very good question.  I mean how do you get skills on social engineering so that you can be asked to do a penetration test?  He gave some answers I would not have thought of such as watching TV shows on mute just so you can read nonverbal communication.  It makes sense right and it is simple.  Also, try listening! Again, sounds simple but how many of us actually do it.  You can start by just listening to your wife, girlfriend, kids, friends and co-workers.  You will score points with the wife/gf at least. =-).   Finally, to get to that “layer 8” connection is to talk to people.  Just converse with strangers and see how much you can learn about people.  He gave some anecdotal examples when he described that you should be “the fail”.  It was hilarious.  Basically, you can get loads of information from people simple by stating things that are incorrect.  Someone will always be there to try to correct you with information that they should be give. 


I think the conference was a success.  It was informative, exciting and inspiring.  I would definitely recommend looking at their videos if you could not attend.  I am hoping this is the start of more great conferences to come. 

Just came back from it.  It was very cool, loved the info on Shodan, ShoNuff and Lockpicking. 

I agree H1t M0nk3y.  Also, I know information security standards like PCI-DSS are usually for financial institutions but FISMA and SOX has to influence a government agency, right.  That would have to put some pressure on management to do their due diligence and due care.  I would research some laws that show that not only can it be a hit to reputation and profits but it could possibly lead to charges being brought if any. 

I did not see it posted but I saw some great videos on IronGeek and figured other people might want to check them out. 

http://www.irongeek.com/i.php?page=videos/hack3rcon-videos

Good luck!!!! I hope all the studying and training can help you thru it.  I will finally be able to take the OSCP training next month.  Finally!  Please tell us how you think you did when you are done.  Again, good luck ZF!!

Thanks COm_BOY.  I took a look and went through some of the challenges.  I do like some of the programming ones and the Exploit challenge.  As far as the quality, it was a complete range of 1 - 10.  Some challenges were just looking through Google and some had you test your Assembly/Debugging skills.  It is definitely worth a quick look. I have been trying to look for as many challenges as possible to prepare for the OSCP course.  If anyone else is looking, here are some I have seen:

http://www.dvwa.co.uk/download.php
http://forums.heorot.net/viewtopic.php?f=21&t=149
http://forums.heorot.net/viewforum.php?f=16
http://forums.heorot.net/viewforum.php?f=18
http://www.crackmes.de/
http://www.hackthissite.org/
http://www.astalavista.com/
http://www.mavensecurity.com/WebMaven/
   http://dojo.mavensecurity.com
http://www.foundstone.com/us/resources/proddesc/hacmeshipping.htm
http://www.foundstone.com/us/resources/proddesc/hacmebank.htm

I have not taken it so I cannot give any helpful hints.  But I still wanted to wish you good luck.  And like you said, relax.  I did find these links for inspiration and recommendations:

http://www.chris-mohan.com/2010/02/how-to-fail-the-offensive-security-101-exam/

http://xyberpix.blogspot.com/2007/08/oscp-certification-challenge-most.html

http://www.elwood.net/post/39599202/offensive-security-oscp

http://blogs.securiteam.com/index.php/archives/989

I apologize if this was answered already.  Are there going to be anymore Skillz challenges this year?  I really like the Prison Break challenge.  There has been a lot of security topics for the year that may be cool to include:

-Mobile Phone Security
-Adobe (of course)
-Social Engineering

I guess it would be hard to include them in a challenge I suppose.  But it is something to work with. 

"At my job I wear many hats.  My favorite is white ...."
     -EH.net

"You should have more than just an antivirus to protect you..."
      -EH.net

All I have so far. 

I know this is late, but I did find someone speak on this topic also.  Figured it could other people too.

http://danielmiessler.com/blog/25-questions-to-ask-during-an-information-security-interview

Well, I guess not next week.  At least it will be ordered when it comes out. 

Congrates guys.  I also added the book to my wishlist.  I should have it by next week hopefully.  What inspired you guys to write the book?  It just needed to be done or the love of InfoSec? Also, do you think Ninja skills increase your ability for Social Engineering?