HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 57 guests and 3 members online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Penetration Testing Ninjitsu
EH-Net
May 23, 2013, 10:54:30 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1] 2   Go Down
« previous next »
  Print  
Author Topic: Penetration Testing Ninjitsu  (Read 25562 times)
0 Members and 1 Guest are viewing this topic.
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« on: February 20, 2008, 07:00:49 PM »
I received this in my email today and thought I'd pass it along here for all those interested. It definitely sounds like it'll be something worth listening to.

Quote
------------------------------------------------------------------------------
WEBCAST
“Penetration Testing Ninjitsu” with Ed Skoudis of SANS
Wednesday, February 27 at 2:00 PM EST (GMT -5:00, New York)
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

**Register to receive 20% off an upcoming SANS penetration testing course. Attend
for your chance to win free tuition! (see below for details)
------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command? How about a ping sweeper in a single Windows command?
A password guesser?

Please join Core Security and Ed Skoudis, SANS instructor and founder of
Intelguardians, to learn about these penetration testing techniques and more
in this not-to-be-missed webcast:

“Penetration Testing Ninjitsu”
**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

We’ll begin by looking at some of the motivations for proactively identifying
and exploiting security flaws before the bad guys do – and then take a deep dive
into useful tips that you can use in your own testing initiatives. Specifically,
you’ll learn techniques for leveraging the Windows command shell on a compromised
machine to scan and test other systems on the network.

This all-new take on Skoudis’ popular “Windows Command-Line Kung Fu” presentation
is specially focused on penetration testing. Whether you’re a red team member,
a finder and fixer, or a third-party consultant, this webcast is sure to add to
your security testing toolkit.

Register and receive 20% off an upcoming SANS penetration testing course.
One webcast attendee will also win free tuition to the next course at SANS 2008
in Orlando – a $3,695 value!

**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

Hope some of you attend as well Smiley

Bill
Logged
bigwhiff
Newbie
*
Offline Offline

Posts: 14


View Profile
« Reply #1 on: February 20, 2008, 07:12:58 PM »
Bill,

You got that on the board quick.  I was just reading through the email message when the Ethical Hacker Forum notified me of this porting.  I would like to tell everyone that if you have never had a class with Ed Skoudis it truly is a pleasure.  In addition this webcast is FREE!  Ya can't beat free. 

-jack
Logged
Jack Campbell
CCNP CCDP GCIH GHTQ C|EH
http://secauditor.wordpress.com
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #2 on: February 20, 2008, 07:56:42 PM »
Heh... yeah I'm already signed up for that.  I got that email earlier today as well.   Since they're planning to give it out to people who attend the webinar, I was planning on sending the presentation to anyone interested.
Logged
"Bad.. Good?  I'm the guy with the gun"
LSOChris
Guest
« Reply #3 on: February 20, 2008, 08:42:46 PM »


Quote
------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command?

nope but i can do it in bash...

#!/bin/bash

cat iprange.txt | while read IP;
do echo ${IP} && host ${IP} nameserverIP;
done >> hostoutput.txt
Logged
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« Reply #4 on: February 27, 2008, 12:51:20 PM »
This webinar is starting within the next 10 minutes... anyone else attending?
Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Online Online

Posts: 4167


Editor-In-Chief


View Profile WWW
« Reply #5 on: February 27, 2008, 01:51:34 PM »
I'm on.

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« Reply #6 on: February 27, 2008, 01:56:35 PM »
Reminds me a lot of the 'Frosty the Snow Crash' challenge Smiley

That's the first time I've heard a presentation by Ed Skoudis. He sounds like an excellent instructor and I'm definitely going to look into taking this course sometime in the future (as I'm sure it's quite costly).
« Last Edit: February 27, 2008, 02:05:12 PM by BillV » Logged
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« Reply #7 on: February 27, 2008, 02:26:44 PM »
That was a great webinar... I'm looking into the course now, it definitely sounds like something worth taking. Does anyone know if SANS offers financing for classes? Off to check the site... Smiley
Logged
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #8 on: February 27, 2008, 02:44:53 PM »
It was definately interesting to listen to.  I had wondered at the easiest way to create a ping sweeper/hostname resolver via command line.  That's kind of nifty.   I guess personally I wish he would have been able to spend more time on other little nifty 'meats and potatos' techi things like that, but if he did we wouldn't be as motivated to pay for the class if we heard it all eh?  Yeah, he sounds like a great teacher, that was worth my time.
Logged
"Bad.. Good?  I'm the guy with the gun"
rance
Full Member
***
Offline Offline

Posts: 212


<censored>


View Profile
« Reply #9 on: February 27, 2008, 04:35:58 PM »
Bummer, missed this one.  Looks like it would have been a neat one to attend.
Logged
Poking at security since 1986.  +++ATH
nebu10uz
Sr. Member
****
Offline Offline

Posts: 368



View Profile WWW
« Reply #10 on: February 27, 2008, 06:13:45 PM »

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

This was the first time I heard Skoudis speak live and I must say that this guy can teach and at the same time make it real entertaining. Looking forward to his second webcast (3 part series) on May 20th.
Logged
Security+, OSCP, CEH
Mr. Roboto
Jr. Member
**
Offline Offline

Posts: 67


Himitsu wo shiritai


View Profile
« Reply #11 on: February 27, 2008, 11:22:08 PM »
Quote from: blackazarro on February 27, 2008, 06:13:45 PM

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

Anyone know where they'll post the presentation?  It doesn't seem to be online yet.
Logged
A+, Security+, HDI Support Center Analyst, MCTS: Vista
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« Reply #12 on: February 28, 2008, 08:14:49 AM »
I'm not sure, but they should be sending an email to the attendees with that information. I'm sure one of us will post it once received.
Logged
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #13 on: February 28, 2008, 08:29:52 AM »
I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
Dengar13
Sr. Member
****
Offline Offline

Posts: 380



View Profile
« Reply #14 on: February 28, 2008, 09:03:24 AM »
Quote from: RoleReversal on February 28, 2008, 08:29:52 AM
I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know

Thanks.  I too was unable to attend and would like to review it as well.
Logged
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
Pages: [1] 2   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.076 seconds with 24 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.