oleDB

For me personally, I want to see two things from an intern. The capability to learn things quickly and a passion for security. Often times I will ask them to learn about a question they missed and discuss it intelligently on the 2nd interview. I also like to see that they like to read technical books and tinker around with a home lab setup. Those…[Read more]

I think the cancellation was a given, it was marginally funny with a heavy dose of geek humor and weak tech sauce. Whats more shocking to me is the cancellation of HT and Chicago Code. I thought they were good shows.

Hey VashTS,
You pretty much run into one of the most common themes in IT Security today. Mgmt doesn’t care or is ignorant of the security threatscape. That ends up going back on us as security minded individuals to show them the risk in terms they understand. Business terms, lame powerpoints, green and red metrics …. but I digress.
So I would…[Read more]

Wow that’s something really useful McAfee has put together. Thanks for the link, looks like some awesome security awareness content there.

My preference is for the stand alone IPS to die and become a fully integrated module in your firewall. Similar to the Netscreen IDP, but with the quality of Tipping Point.

I have a general question for all 3 guys. I’m sure its an infrequent occurrence that you find a network you cannot hack. However in that rare occasion, what are some of the things that present the biggest obstacles to your pen test?

I’m interested in learning about when companies get security right. And not necessarily even certain technologies…[Read more]

Thats really weird because typically the last half of the password is cracked first, not the first half.

If your only using an alphanum table and just the first half is cracked then most likely the second half has a special character(s), alt-xxx, or is non-existent. You will need to create a bigger table with more character space using rtgen or…[Read more]

All registered, should be awesome just like the last series. Also, great idea Don to have them show up on the forum for Q&A afterwards.

Excellent review Ryan. I will definitely buy this book. I’m glad there is an alternative to the crap that Syngress publishes.

I personally did not like Q1 for the simple fact that it doesn’t track by hostname. So essentially everything is IP based and stateless. So you can’t add notes to a host so when the event reoccurs other analysts will not see the work you already did. Yes you can whitelist events so that they don’t reoccur, but there was also a bug with that as…[Read more]

sweet, thx for the heads up, downloading asap

There is not much you can do, if whitelisting the approved netblocks isn’t feasible with your business. By that I mean permitting only the people you want to FTP on your server through the fw/router. Blacklisting becomes unmanageable, because you will continually be adding addresses, as I’m sure you’ve already seen. I would start with what you’ve…[Read more]

Ebay ….
http://search.ebay.com/netscreen-5xp_W0QQfnuZ0QQfsooZ2QQfsopZ32QQrprZ8QQxpufuZx

Rather then let you CCNA expire, I would just take one test on the pro tracks like you said. That’s what I do, and the tests rarely take longer then a month to prepare for depending on your available time.

Excellent write up BillV

Anyone in this forum have experience running splunk against 25-50 TBs of log data? I’m just wondering if it can handle that and how many separate servers you might have to spin up.

The most important point of the article: If you think a cert will make you a star you are 100% wrong. I agree with silxp that the focus should be on learning the content well and not what a cert gets you. Also another point I like, which was kinda hinted at. Don’t make your certification selection based on trendiness or job boards, you should…[Read more]

I think there is definitely interest, but since this is an already crowded niche for certification, it may just be that nobody has taken the course yet. I know the SANS and Mandiant courses are very popular in this area.

that quote is hilarious!

Just what we need another piece of beta software running on the interweb ….
No seriously, why can’t ANY developer deliver a browser that runs in a complete sandbox with a normal browsing experience. For some reason, they designed web content with need to access your system either with user privileges or system privileges that most 3rd party…[Read more]

NO DOUBT, there are tons of “legit” companies walking around simply running a va scan and handing them a stock report. What a joke and nobody knows any better. As long as the box gets checked. I once had some idiot at an unamed company tell me that their pentest was only running firewalk from the outside. Apparently firewalk was their magic bullet…[Read more]