HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 67 guests online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Penetration Testing Ninjitsu
EH-Net
February 09, 2012, 06:35:21 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1] 2   Go Down
« previous next »
  Print  
Author Topic: Penetration Testing Ninjitsu  (Read 22626 times)
0 Members and 2 Guests are viewing this topic.
BillV
Hero Member
*****
Offline Offline

Posts: 1790


View Profile WWW
« on: February 20, 2008, 07:00:49 PM »
I received this in my email today and thought I'd pass it along here for all those interested. It definitely sounds like it'll be something worth listening to.

Quote
------------------------------------------------------------------------------
WEBCAST
“Penetration Testing Ninjitsu” with Ed Skoudis of SANS
Wednesday, February 27 at 2:00 PM EST (GMT -5:00, New York)
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

**Register to receive 20% off an upcoming SANS penetration testing course. Attend
for your chance to win free tuition! (see below for details)
------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command? How about a ping sweeper in a single Windows command?
A password guesser?

Please join Core Security and Ed Skoudis, SANS instructor and founder of
Intelguardians, to learn about these penetration testing techniques and more
in this not-to-be-missed webcast:

“Penetration Testing Ninjitsu”
**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

We’ll begin by looking at some of the motivations for proactively identifying
and exploiting security flaws before the bad guys do – and then take a deep dive
into useful tips that you can use in your own testing initiatives. Specifically,
you’ll learn techniques for leveraging the Windows command shell on a compromised
machine to scan and test other systems on the network.

This all-new take on Skoudis’ popular “Windows Command-Line Kung Fu” presentation
is specially focused on penetration testing. Whether you’re a red team member,
a finder and fixer, or a third-party consultant, this webcast is sure to add to
your security testing toolkit.

Register and receive 20% off an upcoming SANS penetration testing course.
One webcast attendee will also win free tuition to the next course at SANS 2008
in Orlando – a $3,695 value!

**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

Hope some of you attend as well Smiley

Bill
Logged
bigwhiff
Newbie
*
Offline Offline

Posts: 14


View Profile
« Reply #1 on: February 20, 2008, 07:12:58 PM »
Bill,

You got that on the board quick.  I was just reading through the email message when the Ethical Hacker Forum notified me of this porting.  I would like to tell everyone that if you have never had a class with Ed Skoudis it truly is a pleasure.  In addition this webcast is FREE!  Ya can't beat free. 

-jack
Logged
Jack Campbell
CCNP CCDP GCIH GHTQ C|EH
http://secauditor.wordpress.com
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #2 on: February 20, 2008, 07:56:42 PM »
Heh... yeah I'm already signed up for that.  I got that email earlier today as well.   Since they're planning to give it out to people who attend the webinar, I was planning on sending the presentation to anyone interested.
Logged
"Bad.. Good?  I'm the guy with the gun"
ChrisG
EH-Net Columnist
Hero Member
*****
Offline Offline

Posts: 1166


View Profile WWW
« Reply #3 on: February 20, 2008, 08:42:46 PM »


Quote
------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command?

nope but i can do it in bash...

#!/bin/bash

cat iprange.txt | while read IP;
do echo ${IP} && host ${IP} nameserverIP;
done >> hostoutput.txt
Logged
...tests i took go here...

http://carnal0wnage.attackresearch.com/
BillV
Hero Member
*****
Offline Offline

Posts: 1790


View Profile WWW
« Reply #4 on: February 27, 2008, 12:51:20 PM »
This webinar is starting within the next 10 minutes... anyone else attending?
Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 3845


Editor-In-Chief


View Profile WWW
« Reply #5 on: February 27, 2008, 01:51:34 PM »
I'm on.

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
BillV
Hero Member
*****
Offline Offline

Posts: 1790


View Profile WWW
« Reply #6 on: February 27, 2008, 01:56:35 PM »
Reminds me a lot of the 'Frosty the Snow Crash' challenge Smiley

That's the first time I've heard a presentation by Ed Skoudis. He sounds like an excellent instructor and I'm definitely going to look into taking this course sometime in the future (as I'm sure it's quite costly).
« Last Edit: February 27, 2008, 02:05:12 PM by BillV » Logged
BillV
Hero Member
*****
Offline Offline

Posts: 1790


View Profile WWW
« Reply #7 on: February 27, 2008, 02:26:44 PM »
That was a great webinar... I'm looking into the course now, it definitely sounds like something worth taking. Does anyone know if SANS offers financing for classes? Off to check the site... Smiley
Logged
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #8 on: February 27, 2008, 02:44:53 PM »
It was definately interesting to listen to.  I had wondered at the easiest way to create a ping sweeper/hostname resolver via command line.  That's kind of nifty.   I guess personally I wish he would have been able to spend more time on other little nifty 'meats and potatos' techi things like that, but if he did we wouldn't be as motivated to pay for the class if we heard it all eh?  Yeah, he sounds like a great teacher, that was worth my time.
Logged
"Bad.. Good?  I'm the guy with the gun"
rance
Full Member
***
Offline Offline

Posts: 163


<censored>


View Profile
« Reply #9 on: February 27, 2008, 04:35:58 PM »
Bummer, missed this one.  Looks like it would have been a neat one to attend.
Logged
Poking at security since 1986.  +++ATH
nebu10uz
Sr. Member
****
Offline Offline

Posts: 363



View Profile WWW
« Reply #10 on: February 27, 2008, 06:13:45 PM »

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

This was the first time I heard Skoudis speak live and I must say that this guy can teach and at the same time make it real entertaining. Looking forward to his second webcast (3 part series) on May 20th.
Logged
Security+, OSCP, CEH
Mr. Roboto
Jr. Member
**
Offline Offline

Posts: 67


Himitsu wo shiritai


View Profile
« Reply #11 on: February 27, 2008, 11:22:08 PM »
Quote from: blackazarro on February 27, 2008, 06:13:45 PM

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

Anyone know where they'll post the presentation?  It doesn't seem to be online yet.
Logged
A+, Security+, HDI Support Center Analyst, MCTS: Vista
BillV
Hero Member
*****
Offline Offline

Posts: 1790


View Profile WWW
« Reply #12 on: February 28, 2008, 08:14:49 AM »
I'm not sure, but they should be sending an email to the attendees with that information. I'm sure one of us will post it once received.
Logged
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 857



View Profile WWW
« Reply #13 on: February 28, 2008, 08:29:52 AM »
I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
Dengar13
Sr. Member
****
Offline Offline

Posts: 378



View Profile
« Reply #14 on: February 28, 2008, 09:03:24 AM »
Quote from: RoleReversal on February 28, 2008, 08:29:52 AM
I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know

Thanks.  I too was unable to attend and would like to review it as well.
Logged
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
Pages: [1] 2   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.209 seconds with 24 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge Training: Build Security Skills to Protect and Defend

offsec_130x200-2_jan-feb2012.png
Offensive Security
AWE Live in the Caribbean!
March 5 - 9, 2012

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: Refer_EHN
Including SANS Phoenix 2012, SANS 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.