.

Latest security Trend,

<<

sajeeva

Newbie
Newbie

Posts: 5

Joined: Mon Mar 22, 2010 3:43 am

Post Mon Mar 22, 2010 4:01 am

Latest security Trend,

hi..
I went to an interview and they asked me to do a presentation on "the latest security  trend". they expect something new. for ex, it shoud not be firewalls, since everybody knows about it. the topic should be bit advance. it should be up to my level. im a graduate and reading for CEH. your suggstions are wrmly welcome.
thnks...
<<

j0rDy

User avatar

Hero Member
Hero Member

Posts: 591

Joined: Tue Feb 23, 2010 4:55 am

Location: Netherlands

Post Mon Mar 22, 2010 4:33 am

Re: Latest security Trend,

does it have to be technical or more management level? things like botnets or cloud computing are always good material to educate about. another thing that is interesting is VMware hacking (if it has to be about hacking). i've been to a vmware hacking presentation last week and dispite its shortness (about 20min) it was very interesting.
CISSP, CEH, ECSA, OSCP, OSWP, eCPPT, eWAPT

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1704

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Mar 22, 2010 5:38 am

Re: Latest security Trend,

Yeah, with MANY of my clients leaning on VMWare and various definitions of 'cloud computing,' I find that virtualization security is a very hot topic right now.  I've spoken to two local government agencies, recently, who are discussing pentests with me, who have had their outsourced VM / cloud services hacked, within the past 3 months.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1256

Joined: Mon Apr 28, 2008 9:20 am

Post Mon Mar 22, 2010 5:44 am

Re: Latest security Trend,

Maybe you can get some ideas from the Top Security Predictions for 2010 thread.

btw, welcome to the forums, sajeeva.
<<

Anquilas

User avatar

Full Member
Full Member

Posts: 169

Joined: Fri Mar 19, 2010 7:50 am

Location: Belgium

Post Mon Mar 22, 2010 9:33 am

Re: Latest security Trend,

I'm not sure in what field your company is active, but just spouting a few idea's on recent stuff that I find interesting.

There has been some news about successful blows against criminal botnets. That's always something that speaks to the imagination:
  • http://www.pcpro.co.uk/news/security/355852/microsoft-secretly-beheads-notorious-botnet
  • http://www.itworld.com/government/100020/zeus-botnet-dealt-blow-isp-troyak-knocked-out
  • http://news.slashdot.org/story/10/03/03/0328246/Mariposa-Botnet-Beheaded

Also, along the line of awesec: If this company's focus is towards development, the OWASP TOP 10 project (Top 10 application security vulnerabilities) might give some inspiration. You might pick an interesting application vulnerability and expand on that. If I'm correct, knowledge of application security is very limited in most circles :-)
http://www.owasp.org/index.php/Category ... en_Project

(Edit) Or, concerning new tools: the new webapp security tool from Google, Skipfish. You can hardely go more recent then that ;-)
There is a nice review from Jason (Jhaddix):
http://www.redspin.com/blog/2010/03/19/ ... nner-fray/

Good luck!
Last edited by Anquilas on Mon Mar 22, 2010 11:07 am, edited 1 time in total.
Twitter: https://twitter.com/dietervds
Blog: https://synquell.wordpress.com (not much there yet)

The beginning of knowledge is the discovery of something we do not understand.
<<

sajeeva

Newbie
Newbie

Posts: 5

Joined: Mon Mar 22, 2010 3:43 am

Post Mon Mar 22, 2010 12:53 pm

Re: Latest security Trend,

j0rdy, hayabusa, awesec and Anquilas, thank you all for ur replies..

@ Anquilas, thnks for ur reply,yep, that company i went for the interview has a team consists of ethical hackers, and they do pen testing and suggest the solutions for vulnrbilities found. 

wel, the topic "cloud computing" got my attention. hope it wuld be ok for the presntation. if you know any good sources to find the knowldge, plz let me know,
thnks  :)
<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1256

Joined: Mon Apr 28, 2008 9:20 am

Post Mon Mar 22, 2010 1:03 pm

Re: Latest security Trend,

You should be able to find some resources from conferences such as BlackHat and similar ones, e.g. there was a presentation titled Cloud Computing Models and Vulnerabilities: Raining on the Trendy New Parade. There were some more presentations on this topic throughout various other security conferences as well.
<<

rvs

Jr. Member
Jr. Member

Posts: 94

Joined: Wed Jan 28, 2009 9:40 pm

Post Mon Mar 22, 2010 2:55 pm

Re: Latest security Trend,

Try this topic. Cross Application Scripting

http://www.backtrack-linux.org/backtrac ... ong-to-us/
<<

Anquilas

User avatar

Full Member
Full Member

Posts: 169

Joined: Fri Mar 19, 2010 7:50 am

Location: Belgium

Post Mon Mar 22, 2010 4:48 pm

Re: Latest security Trend,

You're most welcome m8.

There is a seminar about Virtualization & Cloud Security on the InfoSecurity.be event that I'm going to this week.
If I get my hands on some (digital) material, I'll be sure to let you know.

Cheers,

Anq
Twitter: https://twitter.com/dietervds
Blog: https://synquell.wordpress.com (not much there yet)

The beginning of knowledge is the discovery of something we do not understand.
<<

blackazarro

User avatar

Sr. Member
Sr. Member

Posts: 368

Joined: Sun Aug 13, 2006 5:31 pm

Post Mon Mar 22, 2010 6:06 pm

Re: Latest security Trend,

Security+, OSCP, CEH
<<

j0rDy

User avatar

Hero Member
Hero Member

Posts: 591

Joined: Tue Feb 23, 2010 4:55 am

Location: Netherlands

Post Tue Mar 23, 2010 3:46 am

Re: Latest security Trend,

if your still not sure what "black hat" topic to choose:

http://www.defcon.org/html/links/defcon-media-archives.html

a very good resource for the latest topics!
CISSP, CEH, ECSA, OSCP, OSWP, eCPPT, eWAPT

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
<<

Anquilas

User avatar

Full Member
Full Member

Posts: 169

Joined: Fri Mar 19, 2010 7:50 am

Location: Belgium

Post Tue Mar 23, 2010 4:41 am

Re: Latest security Trend,

Twitter: https://twitter.com/dietervds
Blog: https://synquell.wordpress.com (not much there yet)

The beginning of knowledge is the discovery of something we do not understand.
<<

n1p

Jr. Member
Jr. Member

Posts: 89

Joined: Tue Mar 16, 2010 5:31 pm

Post Tue Mar 23, 2010 3:39 pm

Re: Latest security Trend,

Advanced Persistent Threat may be a good topic, if you are interested in malware and targeted attacks that is! However, if it is an interview, you could demonstrate up-to-date security knowledge, with technical ability (through demo of PDF reversing and shellcode extraction for example) and also an appreciation of the business side of things. Such attacks are targeted against business and as such may have a direct effect on revenue, profit and reputation. Things business execs are all too careful about. Therefore you would demonstrate various aspects of your skillset that interviewers are looking for, whilst getting to talk about something interesting... Again helping you to demonstrate your enthusiasm for security as a whole

Just a thought...

n1p
<<

sajeeva

Newbie
Newbie

Posts: 5

Joined: Mon Mar 22, 2010 3:43 am

Post Wed Mar 24, 2010 2:14 am

Re: Latest security Trend,

hi.. all thanks for your replies.links you provide are very usefull.
since cloud computing is sorta broad topic, they askd me to do the presentation on "heuristic scanning". have any idea about it?
thnks
<<

sajeeva

Newbie
Newbie

Posts: 5

Joined: Mon Mar 22, 2010 3:43 am

Post Wed Mar 24, 2010 2:16 am

Re: Latest security Trend,

j0rDy wrote:if your still not sure what "black hat" topic to choose:

http://www.defcon.org/html/links/defcon-media-archives.html

a very good resource for the latest topics!


nice link :) thnnks
Next

Return to CEH - Certified Ethical Hacker

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software