PaulDotCom mailing list archives
Ideas For Tech Segments?
From: jms at bughunter.ca (Justin Seitz)
Date: Tue, 21 Oct 2008 21:22:59 -0600
Here's an idea: How about the forensic effects of a successful penetration? I never hear about what pen-testers do to cover their tracks, clean up, etc. Do pen-testers actually collect data forensics-style? JS Brian J. Almond wrote:
How about some real log management power with Linux and Zenoss. It's cross platform its core product is completely open source and it's all python. Brian Almond -----Original Message----- From: pauldotcom-bounces at mail.pauldotcom.com [mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of xgermx Sent: Tuesday, October 21, 2008 5:06 PM To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] Ideas For Tech Segments? Sorry, only two more, I promise. How about a segment on advanced netcat usage? What about an Evading AV detection segment? On Tue, Oct 21, 2008 at 3:51 PM, xgermx <xgermx at gmail.com> wrote:Also, I'd love to hear a tech segment on Yersinia.Yersinia is a network tool designed to take advantage of some weakeness in different network protocols. It pretends to be a solid framework for analyzing and testing the deployed networks and systems.Currently, there are some network protocols implemented, but others are coming (tell us which one is your preferred). Attacks for the following network protocols are implemented (but of course you are free for implementing new ones):* Spanning Tree Protocol (STP) * Cisco Discovery Protocol (CDP) * Dynamic Trunking Protocol (DTP) * Dynamic Host Configuration Protocol (DHCP) * Hot Standby Router Protocol (HSRP) * IEEE 802.1Q * IEEE 802.1X * Inter-Switch Link Protocol (ISL) * VLAN Trunking Protocol (VTP)http://www.yersinia.net/On Tue, Oct 21, 2008 at 3:40 PM, wishi <wishinet at googlemail.com> wrote:Paul Asadoorian schrieb:So, Larry and I have this discussion every week. What should we bedoingfor tech segments? I'd love to hear your thoughts, and hopefullywe canmake it happen. So, suggest away! Cheers, Paula segment I always like hearing about is security data visualization. But that's very huge and not easy to cover. Maybe you want to have a look at DAVIX (http://davix.secviz.org/)? :) Another interesting topic is: mobile phone pentesting - speaking of smartphones, WiFi, and their TCP/IP and OS specifics. I guess... _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Ideas For Tech Segments?, (continued)
- Ideas For Tech Segments? Chris Merkel (Oct 21)
- Ideas For Tech Segments? Stephen Reese (Oct 21)
- Ideas For Tech Segments? Frog Fang (Oct 21)
- Ideas For Tech Segments? wishi (Oct 21)
- Ideas For Tech Segments? xgermx (Oct 21)
- Ideas For Tech Segments? xgermx (Oct 21)
- Ideas For Tech Segments? Paul Asadoorian (Oct 21)
- Ideas For Tech Segments? Chris Frederick (Oct 21)
- Ideas For Tech Segments? Mad Marv (Oct 21)
- Ideas For Tech Segments? Brian J. Almond (Oct 21)
- Ideas For Tech Segments? Justin Seitz (Oct 21)
- Ideas For Tech Segments? Karl Schuttler (Oct 21)
- Ideas For Tech Segments? xgermx (Oct 21)
- Ideas For Tech Segments? Chris Merkel (Oct 21)
- Ideas For Tech Segments? Paul Asadoorian (Oct 22)