HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 27 guests and 2 members online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Featuresarrow /rootarrow Metasploit's HD Moore is "Hitler's Driver"?
Ethical Hacker Community Forums
December 02, 2008, 06:10:57 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Metasploit's HD Moore is "Hitler's Driver"?  (Read 3182 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Online Online

Posts: 2380


Editor-In-Chief


View Profile WWW
« on: October 24, 2006, 11:22:17 PM »
Check out this new article in Information Week magazine.

Quote
Has H.D. Moore gone too far?

Moore's like many security researchers who gin up publicity for the software flaws they find, as he did with his bug-a-day stunt highlighting browser weaknesses in July. But he goes further, as one of the main forces behind the Metasploit Project, which posts a free, open source platform that makes it easier to develop and test code that can take advantage of software vulnerabilities. Included are more than 150 examples of such code ready to exploit flaws.

Next month, Moore will raise the already-high stakes when Metasploit releases a new piece of code--called eVade-o-Matic--that makes it harder for intrusion-detection systems and antivirus software to detect exploit code aimed at Web browsers. It's one thing to show people how to exploit software flaws; it's another to help attackers go unnoticed.

Quote
He's even well regarded by some--not all--in Microsoft's Security Technology Unit, which had Moore speak at its "Blue Hat" conferences, designed to give Microsoft programmers a wake-up call to the kind of hacking their work will endure. However, one manager of a product successfully broken with his tools, who's no longer with Microsoft, called Moore the "spawn of the devil" and "Hitler's driver."

For full article:
http://www.informationweek.com/news/showArticle.jhtml?articleID=193401125

Don
« Last Edit: October 24, 2006, 11:25:04 PM by don » Logged
CISSP, MCSE, CEH, Security+ SME
ChrisG
EH-Net Columnist
Hero Member
*****
Offline Offline

Posts: 1042


View Profile WWW
« Reply #1 on: October 25, 2006, 10:17:45 PM »
meh, HD Moore is good for the security business and one of the only people actually dropping exploits these days. 

MS is just a bunch or whiners and finger pointers, of course they dont like him, how would you like someone who lets you know (publicly) everytime you make a boo boo.

his month of browswer bugs was awesome, especially since it was a response to some smart comment by MS.

hmmm Hitler's driver because he found exploitable bugs in code...that doesnt say much to me about the caliber of that person
 
Logged
...tests i took go here...

http://carnal0wnage.blogspot.com/
Kev
Guest
« Reply #2 on: October 26, 2006, 12:36:03 AM »
Its outrages to criticize H.D. Moore. He has done more than most  people in security to bring out awareness of exploits. More Admin are now aware of buffer overflows and what they represent.  If you subscribe to the Metasploit email you know how he takes time to answer questions and help when he can.  All for free!  Perhaps those that criticize should look at what they have contributed to the security community before they open their mouth.
Logged
jimbob
Sr. Member
****
Offline Offline

Posts: 316



View Profile WWW
« Reply #3 on: October 26, 2006, 04:51:42 AM »
When a web browser that has been in the wild for as long as MSIE 6 has so many flaws, serious flaws that are being exploited daily, it's about time some code shops woke up and took responsibility. The whole disclosure issue has been covered many times in many forums and there is always a vocal crowd in the software development community ready to condemn ANY disclosure of vulnerabilities to the public.

As we have seen time and time again disclosure is often the only way to get a vendor fix for an issue. You can write stunts like browser bug-a-day as egotistical but publicity serves a purpose. We need to keep pushing the game forward; it wasn't that long ago when the advice was you can't get a virus without opening attachment.

Jim
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.045 seconds with 24 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
During the most recent election, I:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.