The Ethical Hacker Network - Penetration Testing Ninjitsu

BillV

Hero Member

Offline

Posts: 1892

Penetration Testing Ninjitsu

« on: February 20, 2008, 07:00:49 PM »

I received this in my email today and thought I'd pass it along here for all those interested. It definitely sounds like it'll be something worth listening to.

Quote

------------------------------------------------------------------------------
WEBCAST
“Penetration Testing Ninjitsu” with Ed Skoudis of SANS
Wednesday, February 27 at 2:00 PM EST (GMT -5:00, New York)
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

**Register to receive 20% off an upcoming SANS penetration testing course. Attend
for your chance to win free tuition! (see below for details)
------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command? How about a ping sweeper in a single Windows command?
A password guesser?

Please join Core Security and Ed Skoudis, SANS instructor and founder of
Intelguardians, to learn about these penetration testing techniques and more
in this not-to-be-missed webcast:

“Penetration Testing Ninjitsu”
**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

We’ll begin by looking at some of the motivations for proactively identifying
and exploiting security flaws before the bad guys do – and then take a deep dive
into useful tips that you can use in your own testing initiatives. Specifically,
you’ll learn techniques for leveraging the Windows command shell on a compromised
machine to scan and test other systems on the network.

This all-new take on Skoudis’ popular “Windows Command-Line Kung Fu” presentation
is specially focused on penetration testing. Whether you’re a red team member,
a finder and fixer, or a third-party consultant, this webcast is sure to add to
your security testing toolkit.

Register and receive 20% off an upcoming SANS penetration testing course.
One webcast attendee will also win free tuition to the next course at SANS 2008
in Orlando – a $3,695 value!

**Register here:
http://www.coresecurity.com/index.php5?module=Form&action=webinar&campaign=ninjitsu

Hope some of you attend as well

Bill


	Logged

bigwhiff

Newbie

Offline

Posts: 14

Re: Penetration Testing Ninjitsu

« Reply #1 on: February 20, 2008, 07:12:58 PM »

Bill,

You got that on the board quick. I was just reading through the email message when the Ethical Hacker Forum notified me of this porting. I would like to tell everyone that if you have never had a class with Ed Skoudis it truly is a pleasure. In addition this webcast is FREE! Ya can't beat free.

-jack


	Logged

Jack Campbell
CCNP CCDP GCIH GHTQ C|EH
http://secauditor.wordpress.com

g00d_4sh

Sr. Member

Offline

Posts: 394

Re: Penetration Testing Ninjitsu

« Reply #2 on: February 20, 2008, 07:56:42 PM »

Heh... yeah I'm already signed up for that. I got that email earlier today as well. Since they're planning to give it out to people who attend the webinar, I was planning on sending the presentation to anyone interested.


	Logged

"Bad.. Good? I'm the guy with the gun"

LSOChris

Guest

Re: Penetration Testing Ninjitsu

« Reply #3 on: February 20, 2008, 08:42:46 PM »

Quote

------------------------------------------------------------------------------

Do you know how to create an automated, iterative reverse DNS lookup tool in a
single Windows command?

nope but i can do it in bash...

#!/bin/bash

cat iprange.txt | while read IP;
do echo ${IP} && host ${IP} nameserverIP;
done >> hostoutput.txt


	Logged

BillV

Hero Member

Offline

Posts: 1892

Re: Penetration Testing Ninjitsu

« Reply #4 on: February 27, 2008, 12:51:20 PM »

This webinar is starting within the next 10 minutes... anyone else attending?


	Logged

don

Editor-In-Chief
Administrator
Hero Member

Online

Posts: 4168

Editor-In-Chief

Re: Penetration Testing Ninjitsu

« Reply #5 on: February 27, 2008, 01:51:34 PM »

I'm on.

Don


	Logged

CISSP, MCSE, CSTA, Security+ SME

BillV

Hero Member

Offline

Posts: 1892

Re: Penetration Testing Ninjitsu

« Reply #6 on: February 27, 2008, 01:56:35 PM »

Reminds me a lot of the 'Frosty the Snow Crash' challenge

That's the first time I've heard a presentation by Ed Skoudis. He sounds like an excellent instructor and I'm definitely going to look into taking this course sometime in the future (as I'm sure it's quite costly).


« Last Edit: February 27, 2008, 02:05:12 PM by BillV »	Logged

BillV

Hero Member

Offline

Posts: 1892

Re: Penetration Testing Ninjitsu

« Reply #7 on: February 27, 2008, 02:26:44 PM »

That was a great webinar... I'm looking into the course now, it definitely sounds like something worth taking. Does anyone know if SANS offers financing for classes? Off to check the site...


	Logged

g00d_4sh

Sr. Member

Offline

Posts: 394

Re: Penetration Testing Ninjitsu

« Reply #8 on: February 27, 2008, 02:44:53 PM »

It was definately interesting to listen to. I had wondered at the easiest way to create a ping sweeper/hostname resolver via command line. That's kind of nifty. I guess personally I wish he would have been able to spend more time on other little nifty 'meats and potatos' techi things like that, but if he did we wouldn't be as motivated to pay for the class if we heard it all eh? Yeah, he sounds like a great teacher, that was worth my time.


	Logged

"Bad.. Good? I'm the guy with the gun"

rance

Full Member

Offline

Posts: 212

Re: Penetration Testing Ninjitsu

« Reply #9 on: February 27, 2008, 04:35:58 PM »

Bummer, missed this one. Looks like it would have been a neat one to attend.


	Logged

Poking at security since 1986. +++ATH

nebu10uz

Sr. Member

Offline

Posts: 368

Re: Penetration Testing Ninjitsu

« Reply #10 on: February 27, 2008, 06:13:45 PM »

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

This was the first time I heard Skoudis speak live and I must say that this guy can teach and at the same time make it real entertaining. Looking forward to his second webcast (3 part series) on May 20th.


	Logged

Security+, OSCP, CEH

Mr. Roboto

Jr. Member

Offline

Posts: 67

Himitsu wo shiritai

Re: Penetration Testing Ninjitsu

« Reply #11 on: February 27, 2008, 11:22:08 PM »

Quote from: blackazarro on February 27, 2008, 06:13:45 PM

Hey rance, I think I heard that this presentation was being recorded so you could probably view it later.

Anyone know where they'll post the presentation? It doesn't seem to be online yet.


	Logged

A+, Security+, HDI Support Center Analyst, MCTS: Vista

BillV

Hero Member

Offline

Posts: 1892

Re: Penetration Testing Ninjitsu

« Reply #12 on: February 28, 2008, 08:14:49 AM »

I'm not sure, but they should be sending an email to the attendees with that information. I'm sure one of us will post it once received.


	Logged

Andrew Waite

Hero Member

Offline

Posts: 928

Re: Penetration Testing Ninjitsu

« Reply #13 on: February 28, 2008, 08:29:52 AM »

I was unable to attend this event as it classed with a live BCS event was attending. Hopefully there will be a recording of the presentation released as I was interested before hand (and moreso after reading comments from those that attended).

Unfortunately from previous experience with Core Security they are usually fairly quick to get the recordings out.

If I hear anything else or get a link I will let you all know


	Logged

-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk

Dengar13

Sr. Member

Offline

Posts: 380

Re: Penetration Testing Ninjitsu

« Reply #14 on: February 28, 2008, 09:03:24 AM »

Quote from: RoleReversal on February 28, 2008, 08:29:52 AM

Thanks. I too was unable to attend and would like to review it as well.


	Logged

A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!

Pages: [1] 2 Go Up

« previous next »