Congrats aweSEC! I gotta find some time to do this challenge.

Yup, I took that course this summer. I learned some cool tricks. Earned a cert for passing the course. Very easy.

I think I too solved the riddle. I've been trying to decrypt that thing since last night.

Or you can also install ChannelCaster and subscribe to InfoSecurity News. I created this channel which currently grabs about 69 popular security/malware/hacking feeds.

Also, I recommend Tweet Lanes because it complies with the Android UI and Falcon for Twitter (awesome widget).

Me wants ticket!  Let me give this a try. My hack-fu is kinda of rusty... he he.

Here are some tools you can try:

ExifTool
McAfee FileInsight
FileAlyzer

Try them and see what you can get.

I'm still waiting for the answers. Don, what happen here?

There's a good book on coding for penetration tester that was released last week. Among other scripting languages that the book talks about, Perl is included. This is a must read and I'm definitely going to get my hands on it.

http://www.amazon.com/Coding-Penetration-Testers-Building-Better/dp/1597497290

 

Thanks for the info.

I'm still waiting for the results. When are we going to found out? I can't wait to see the answers.

It's expensive! I'm trying to see if my employer is willing to pay for the FOR610 course.

Yeah, I like Memorize and you can make it portable too. I added it to my Iron Key USB flash drive as part of my tool kit. You just have to make sure to run it once from your flash drive with write-mode enable to let it copy some additional files.

Also, last week I had the chance to play around with Redline. I like it except that you need .Net Framework version 4 or greater to use it on your Windows machine. Currently, it's very slow in analyzing memory dumps and it doesn't work well with Windows 7. But hey, it's new and I'm sure that Mandiant will improve it and make it better. I do recommend for beginners to take look at Redline and use it because it walks you through with explaination on quickly detecting suspicious or potentially malicious processes and etc.   

Btw, Don, I can't thank you enough for the Iron Key flash drive. I can't live without it! Since I can unlock the Iron Key in read-mode only, it's perfect for incident response and malware forensic. You don't have to worry about your flash drive getting infected. I know it has been more than a year that I received my Iron Key, but I just wanted to say thanks again.

Fyi, this is nothing new. Check out the following blog:

https://alexlevinson.wordpress.com/2011/04/21/3-major-issues-with-the-latest-iphone-tracking-discovery/

Interesting info:

http://www.f-secure.com/weblog/archives/00002145.html

http://gigaom.com/2011/04/21/researcher-iphone-location-data-already-used-by-cops/?utm_source=social&utm_medium=twitter&utm_campaign=gigaom

He he, nice... I thought I had it there for a while...

Excellent post. Hey sil, thanks for the info.