SecuraBit
SecuraBit Before It Bytes!

SecuraBit  Episode 71: Managing our Careers with Lee Kushner
December 15, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit

Guests:
Lee Kushner - @LJKush - http://www.ljkushner.com/ - http://www.infosecleaders.com/

General topics:
Discussion on Career Management
The importance of having a career plan.
It’s a very crowded market in information security, and it’s getting more so every day.

www.infosecleaders.com/2010-compensation-survey/
FAQ: Compromised Commenting Accounts on Gawker Media http://lifehacker.com/5712785/

OnePassword - http://agilewebsolutions.com/onepassword
KeePass - http://keepass.info/
LastPass - http://lastpass.com/

Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.

Upcoming events
#BSidesBerlin (28-30 Dec 2010)
#BSidesMSP (7 Jan 2011)
ShmooCon (28-31 Jan 2011)
RSA Conference 2011 (14 -18 Feb 2011)
#BSidesSanFrancisco (14-15 Feb 2011)
#BSidesAustin (March 2011)

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP71.mp3
Category:podcasts -- posted at: 7:32pm EDT

SecuraBit  Episode 70: Following the wh1t3Rabbit, Hat-tricks with a wh1t3Rabbit
December 1, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Christopher Mills – @thechrisam
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

Guests:
HP's Rafal Los - @wh1t3Rabbit
Subscribe to his blog at http://hp.com/go/white-rabbit

General topics:
Shmoocon tickets, who’s got them?

Hat-trick http://en.wikipedia.org/wiki/Hat-trick

Password security, does it really matter?

Application security to detect and prevent malicious code.

Diaspora https://joindiaspora.com/

Security Metrics

Story time with Rafal

RSnake shutting down his blog after 5 years and 1000 posts http://ha.ckers.org/

FTC Staff Issues Privacy Report Offers Framework for Consumers, Businesses, and Policymakers: Endorses “Do Not Track” to Facilitate Consumer Choice About Online Tracking
http://www.ftc.gov/opa/2010/12/privacyreport.shtm

SANS Discount:
Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.

Syngress Discount:
Use our discount code 36449 to receive 20% off any order direct from Elsevier!

Upcoming events
Sunbelt Quarterly Briefing December 8th, 2010 at 9am and 2pm
DojoCon December 11-12, 2010
#BSidesBerlin December 28-30, 2010
ShmooCon January 28-31, 2011

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP70.mp3
Category:general -- posted at: 1:08pm EDT

SecuraBit Episode 69: Picking Locks and Messing up Podcasts, Welcome to Gringo Village!
November 3, 2010

Hosts:
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Anthony Gartner – @anthonygartner http://anthonygartner.com
Jason Mueller – @securabit_jay
Rob Fuller – @mubix
Tim Krabec – @tkrabec http://www.SMBMinute.com

Guests:
Deviant Ollum - http://deviating.net/ - Author of Syngress Practical Lock Picking
General topics:
Practical Lock Picking By Deviant Ollam http://www.syngress.com/hacking-and-penetration-testing/Practical-Lock-Picking/

Review submitted by a coworker:
Practical Lock Picking by Deviant Ollum was an enjoyable read. The author does a good job of covering the art and science of picking locks. He chose two of the most common types of locks for the bulk of his material which helps keep the focus of the book tight. He leads the reader from the basic operational principles of the locks, to flaws in the design & manufacture and finally how to pick the locks. The coverage of pick types and other tools of the trade round out the readers knowledge of the subject. His down to earth style and simple language help the reader understand the material and develop the skills to pick these types of locks. His logical progression of starting with one pin and working your way up to all the pins in the lock will help the reader build confidence in their skills. The final sections on bypassing the door reminds the reader that locks are part of a system and sometimes the way to defeat a system is not the direct approach. Overall I would give this book 4 out of 4 stars.

Shmoocon Tickets??

The Open Organization Of Lockpickers http://toool.us/
Lock Picking Videos - http://www.youtube.com/deviantollam
General Information http://deviating.net/lockpicking/

IE Zero Day
Microsoft Security Advisory (2458511)
Vulnerability in Internet Explorer Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/advisory/2458511.mspx

Enhanced Mitigation Experience Toolkit v2.0
http://www.microsoft.com/downloads/en/details.aspx?FamilyID=c6f0a6ee-05ac-4eb6-acd0-362559fd2f04

SpyEye v. ZeuS Rivalry Ends in Quiet Merger
http://krebsonsecurity.com/2010/10/spyeye-v-zeus-rivalry-ends-in-quiet-merger/

Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is0 good for all SANS courses in all formats.

Upcoming events

#BSidesDFW November 6, 2010
#BSidesDE November 6, 2010
AppSec DC 2010 November 8-12, 2010
#BSidesOttawa November 12-13, 2010
RUXCON 2010 December 4-5, 2010
DojoCon December 11-12, 2010
#BSidesBerlin December 28-30, 2010
ShmooCon January 28-31, 2010

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP69.mp3
Category:podcasts -- posted at: 7:58pm EDT

SecuraBit  Episode 68: Teaching for handbags!

Hosts:
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Anthony Gartner – @anthonygartner http://anthonygartner.com
Jason Mueller – @securabit_jay

Guests:
Kevin Johnson discusses SANS SEC 542 Web App Pen Testing, Base, etc

General topics:
New Apple Macbook Air.

Recent Security
Zynga collecting data about Facebook users.
Social engineering at a capture the flag event.
Pros and cons to using social networks.
Attacking your web applications for a more secure application.
Samurai WTF (Web Testing Framework) http://samurai.inguardians.com/
Laudanum: Injectable Functionality http://laudanum.inguardians.com/
Basic Analysis and Security Engine (BASE) project http://base.secureideas.net/

Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.

Upcoming events
#BSidesDFW November 6, 2010
#BSidesDE November 6, 2010
AppSec DC 2010 November 8-12, 2010
#BSidesOttawa November 12-13, 2010
#BSidesBerlin December 28-30, 2010
ShmooCon January 28-31, 2010

Links:

http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP68.mp3
Category:podcasts -- posted at: 10:43pm EDT

 

SecuraBit  Episode 67:  We're all gonna get HAX!
October 6, 2010

Hosts:
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Anthony Gartner

Guest: Roger Grimes

General topics:

Authored eight books, and co-authored another 4
Chasing hackers for 23 years
SCADA issues
What the bad guys are doing? Black hat cloud backup?
Offline patch and reset days to recover from a issue.
Whitelisting may be a solution, that is just too hard to implement in many environments.
Needs full sign off from the organization
Different levels of identification

Syngress book of the month club for episode 68
Utilize code 36449 for a discount on books from Syngress!

Executives should have Macs because it makes it easier on the pen tester
Patching and warranties

SANS Connector Program
10% of any SANS events or training use coupon code Connect_SecuraBit10

Lenny Zeltser Facebook Social Captcha Authentication
http://blog.zeltser.com/post/1258010402/facebook-social-captcha-authentication

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Phreaknic 10/15. http://www.phreaknic.info/pn14/
Bsides Delaware 11/6
Bsides Dallas-FortWorth 11/6

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

 

Direct download: SecuraBit_EP67.mp3
Category:podcasts -- posted at: 12:48pm EDT

 

SecuraBit  Episode 66:
September 22, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel –  @andrew_secbit

 

Guests:
Aaron Barr (HB Gary Federal) @aaronbarr

We discuss HBGary with Aaron, and delve into some fun topics like malware analysis, forensics, and other technical skills.

General topics:
Media Sponsor for:
SecTor 2010 - http://www.sector.ca/
Security Training October 25.
Conference Sessions October 26 & 27, 2010.
Twitter XSS
http://status.twitter.com/post/1161435117/xss-attack-identified-and-patched

Robin Sage
Malware analysis
Behavior of malware in memory

FGET is pretty pimp (free tool that remotely images NTFS volumes)
https://www.hbgary.com/community/shawnblog/fget-v10-goes-live/

Free tools from HB Gary
https://www.hbgary.com/community/free-tools/

Forensics
How flypaper plays into image grabbing

 

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:

http://www.HBGary.com/
http://www.SecuraBit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

 

Direct download: SecuraBit_EP66.mp3
Category:podcasts -- posted at: 11:06pm EDT

 

SecuraBit  Episode 65: Application Security From the Ground Up!
September 8, 2010
 
Hosts:
Anthony Gartner – @anthonygartner
Jason Mueller  – @securabit_jay
Christopher Mills –  @thechrisam

Guests:
Jeff Morgan * Product manager for HP’s Application Security Center product line * 20+ years experience developing commercial software solutions in industries ranging from healthcare to payroll to commercial printing * Joined SPI Dynamics in 2006, which was later acquired by HP * Previously a software engineer and held positions in development, QA, support and account management
General topics:
 
Application Security Development Lifecycle
Flash, as usual
NoScript
Intel and McAfee

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

SecTor 2010 - http://www.sector.ca/
Security Training October 25.
Conference Sessions October 26 & 27, 2010.

Links:
http://securabit.com
HP Application Security Center
Chat with us on IRC at irc.freenode.net #securabit

 

Direct download: SecuraBit_EP65.mp3
Category:podcasts -- posted at: 8:00am EDT

SecuraBit  Episode 64:  A whole lot of organized crime going on!
August 25, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

Guests:
Bryan Sartin - Director of Investigative Response at Verizon Business

General topics:
Verizon RISK Team - http://www.verizonbusiness.com/products/security/risk/

Bryan Sartin, the Director of Investigative Response at Verizon Business, discusses the 2010 Verizon Data Breach Report
http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf

VERIS Framework - https://verisframework.wiki.zoho.com/

MalCon: A Call for ‘Ethical Malcoding’ http://krebsonsecurity.com/2010/08/malcon-a-call-for-ethical-malcoding/

SecTor 2010 - http://www.sector.ca/
Security Training October 25.
Conference Sessions October 26 & 27, 2010.

The real iTunes fraud vulnerability: Gullible users - http://news.cnet.com/8301-13579_3-20014481-37.html

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP64.mp3
Category:general -- posted at: 6:33pm EDT

SecuraBit Episode 63:  Walking to the Waffle House with Andy Willingham
August 11, 2010
Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel –  @andrew_secbit

Guests:
Andy Willingham (Southern Fried Security Podcast) - @andywillingham http://www.andyitguy.com/blog/

General topics:
DEFCON/BLACKHAT/BSides Recap
--Chris’s experience this year, and a review of the medical facilities in Las Vegas
--General entertaining banter

Shiny Old VxWorks Vulnerabilities
http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html

Facebook name extraction based on email/wrong password
http://seclists.org/fulldisclosure/2010/Aug/130

Apple Fixes PDF Vunerability that allowed webbased Jail Break.
iOS 4.0.2 Software Update http://support.apple.com/kb/DL1061

Interview with Andy Willingham
ShmooCon 2011 Dates Announced
http://tinyurl.com/29nzc46

Microsoft drops the patch bomb
http://www.securabit.com/2010/08/10/microsoft-drops-the-patch-bomb/

Andriod Malware and Unexpected Features
http://crave.cnet.co.uk/mobiles/android-gets-its-first-texting-malware-50000303/

Free Android antivirus clocks up 2.5m downloads
http://www.theregister.co.uk/2010/08/11/free_android_security_app/

A Review of Verizon and Google's Net Neutrality Proposal
http://www.eff.org/deeplinks/2010/08/google-verizon-netneutrality

Upcoming events
South Florida ISSA’s Hack the flag and chili cook-off  Saturday August 14, 2010 from 12:00pm - 5:00pm
http://sfissa.org/index.php/sfissa-mm-events/htf-main/85-hack-the-flag-2010
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid - http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:

http://www.securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8
Direct download: SecuraBit_EP63.mp3
Category:general -- posted at: 10:59am EDT

SecuraBit  Episode 62: Visualizing Data with NetWitness

SecuraBit  Episode 62: Visualizing Data with NetWitness

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit

Guests:
Eddie Schwartz - @eddieschwartz

General topics:
BSidesLV http://www.securitybsides.com/BSidesLasVegas
BlackHat https://www.blackhat.com/html/bh-us-10/bh-us-10-home.html
Defcon https://www.defcon.org/html/defcon-18/dc-18-schedule.html

Shmoocon Woot Video http://www.youtube.com/watch?v=HJ0ypgZU_D0
NetWitness Visualize http://visualize.netwitness.com/

Brief panel on certifications.

iPhone App Now Available. http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

http://itunes.apple.com/us/podcast/securabit/id280048405

Upcoming events
South Florida ISSA’s Hack the flag and chili cook-off  Saturday August 14, 2010 from 12:00pm - 5:00pm
http://sfissa.org/index.php/sfissa-mm-events/htf-main/85-hack-the-flag-2010
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast - http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available - http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

Direct download: SecuraBit_EP62.mp3
Category:podcasts -- posted at: 1:05pm EDT

SecuraBit Episode 61: Reverse Engineering Malware with a Spider Monkey

Hosts:
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Tim Krabec – @tkrabec http://www.SMBMinute.com
Nicholas Berthaume -- @nberthaume https://www.bordergatewayprotocol.net
Anthony Gartner – @anthonygartner http://anthonygartner.com

Guests:
Guest: Lenny Zeltser - @lennyzeltser http://zeltser.com/

General topics:
Reverse Engineering Malware

New Linux Distro to analyze malware
REMnux: A Linux Distribution for Reverse-Engineering Malware
http://zeltser.com/remnux/
Based on Ubuntu
Released just 5 days ago - July 8, 2010
2500 Downloads so far
VMWare appliance
Live Distro going out to Source Forge soon
Enlightenment as window manager, (no gnome or kde)
Just what you need to do the analysis
Lightweight as possible
Tools
Emulate Services
Allow malware to interact with your own resources
how does it differ from CW Sandbox
Determine the signs of comprise to compare with your production environment
JS Unpack
Since it is an Ubuntu distro, you can roll a custom version for your environment or lab.
Intrigrrated into the Reverse Engining Malware course from SANS

SANS Digital Forensics Summit
The state of people relying on only antivirus for protection.

The innovator's dilemma http://www.amazon.com/Innovators-Dilemma-Revolutionary-Business-Essentials/dp/0060521996
Microsoft Security Essentials http://www.microsoft.com/security_essentials/

http://www.sans.org/vlive/
Forensics 610: Reverse-Engineering Malware: Malware Analysis Tools and Techniques
SANS vLive! FOR610 - 201001 - Monday, July 26, 2010 - Thursday, August 26, 2010
http://www.sans.org/vlive/details.php?nid=20668

Upcoming events:

BSidesLV http://www.securitybsides.com/BSidesLasVegas
BlackHat https://www.blackhat.com/html/bh-us-10/bh-us-10-home.html
Defcon https://www.defcon.org/html/defcon-18/dc-18-schedule.html
Tim is speaking http://defcon.org/html/defcon-18/dc-18-speakers.html#PanelHTF
Tim is also doing a skytalks schedule http://sudux.com/skytalks_web.jpg
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
South Florida ISSA’s Hack the flag and chili cookoff  Saturday August 14, 2010 from 12:00pm - 5:00pm
http://sfissa.org/index.php/sfissa-mm-events/htf-main/85-hack-the-flag-2010
These are the upcoming security cons and where you can find those of us that will be attending starting in less than two weeks.

Links:
Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP61.mp3
Category:podcasts -- posted at: 10:22pm EDT



SecuraBit  Episode 60: Free Calamari!!!

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Jason Mueller – @securabit_jay
Tim Krabec – @tkrabec http://www.SMBMinute.com

Guests:
Christopher Boyd (Sunbelt Software)
http://en.wikipedia.org/wiki/Christopher_Boyd
http://www.vitalsecurity.org/
http://sunbeltblog.blogspot.com/

General topics:
Chris speaks about how he got involved in the position he is in now.  He also got into how he basically social engineers and discusses his blog.

Dodgy Dr Who Games
Orkut Shenanigans
The Sunbelt Security Blog
Fun with Internet Trolls
How Drugs and Stabby Things Led to a Career in Security
Internet Kill Switch
Twitter Agrees to Data-Security Audits
HacKid -http://www.hackid.org/

Links:

FTC Requires Twitter To Set Up Data-Security Audits
http://news.yahoo.com/s/nf/20100624/tc_nf/74031

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP60.mp3
Category:podcasts -- posted at: 11:59pm EDT

SecuraBit Episode 59: Too many acronyms, my head is going to explode!

SecuraBit Episode 59: Too many acronyms, my head is going to explode!

Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Chris Gerling  – @chrisgerling

Guests: Dan Philpott discusses NIST, Information Assurance, SCAP, FISMA, etc

Contact info: Twitter: @danphilpott

General topics: Federal Information Security Management Act (FISMA) Implementation Project http://csrc.nist.gov/groups/SMA/fisma/index.html

Special Publications (800 Series) http://csrc.nist.gov/publications/PubsSPs.html

Small Business Corner (SBC) http://csrc.nist.gov/groups/SMA/sbc/index.html

FISMApedia http://fismapedia.org/index.php?title=Main_Page

The Security Content Automation Protocol (SCAP) http://scap.nist.gov/ -Change Management

Windows Sysinternals http://technet.microsoft.com/en-us/sysinternals/default.aspx

Sysinternals Suite http://technet.microsoft.com/en-us/sysinternals/bb842062.aspx

Links: http://csrc.nist.gov/

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP59.mp3
Category:podcasts -- posted at: 10:57pm EDT

SecuraBit Episode 58: Forensic Goodness with Harlan Carvey

SecuraBit Episode 58: Forensic Goodness with Harlan Carvey

Hosts:

Anthony Gartner – @anthonygartner http://anthonygartner.com

Christopher Mills – @thechrisam

Chris Gerling  – @chrisgerling

Jason Mueller – @securabit_jay

Andrew Borel –  @andrew_secbit

Guests:

Harlan Carvey http://windowsir.blogspot.com/ Tools:  http://tech.groups.yahoo.com/group/win4n6/

General topics:
Timeline creation Regripper Forensic trends SIFT Lance Mueller http://www.forensickb.com/

Are you interested in taking an upcoming SANS course?  Dr. Eric Cole is teaching the upcoming SANS vLive! 501 course which starts on June 22.  You can register for the course using this link, and coupon code 501SB to save $500!

Direct download: SecuraBit_EP58.mp3
Category:podcasts -- posted at: 8:36am EDT

SecuraBit Episode 57:  Doctor Cole, I Presume?

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Christopher Mills – @thechrisam
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

 

Guests:
Dr. Eric Cole, Ph.D. - @drericcole

General topics:
Mr. Cole is teaching the upcoming SANS vLive! 501 course which starts on June 22.  You can register for the courseusing this link, and coupon code 501SB to save $500!

We discussed VOIP security, or the lack thereof.
Signature based security solutions are going the way of the dinosaur, it's all about behavior and dynamic detection, such as heuristics now.
How to protect your privacy online:
http://twitter.com/ChrisPirillo/status/13881888168

 

Links:
http://www.sans.org/security-training/instructors_upcoming.php?id=34
http://www.securityhaven.com/

Sunbelt Software Webinar: Thursday, May 27, 2010, 2PM - 3PM EDT
Quarterly Briefing: Turn the tables on Bad Guys: Malware Unmasked

The cyber threat landscape is constantly changing, and even with the most sophisticated security you’re never completely protected from attacks. As part of our mission to ‘keep the bad guys out’, SunbeltLabs presents in this webinar how we use our own sandbox technology to keep a step ahead.

Sunbelt Software’s Lead Security Analyst, Brian Jack and Malware Response Manager, Dodi Glenn will discuss the current threat landscape and dig deeper into some of the most dangerous and complicated threats out there.  During this briefing we will focus on two different types of threats: malicious PDFs and rogue antivirus applications. Learn how to gain an edge when protecting your enterprise.

Whether you are dealing with spear phishing or mass attacks, join us to see how to deploy the right tools and learn how to quickly analyze and unmask malware. New threats require new technologies and techniques to protect yourself and your organization.  Sign up now and turn the tables on the bad guys.

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP57.mp3
Category:podcasts -- posted at: 2:58pm EDT

SecuraBit  Episode 56: "Try Harder" - Used with permission

SecuraBit  Episode 56: "Try Harder" - Used with permission

Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit

Guests: Chris Hadnagy - @humanhacker Operations Manager and involved with www.offensive-security.com www.backtrack-linux.org http://www.social-engineer.org/

General topics: MSFU course Saturday the 8th from 10am to 5pm in Louisville, KY‎

Chris Speaks of a new kernel update released around the day of recording for Backtrack 4

Since you are able to listen to this podcast the DNS Security Update did not affect you

SANS Investigative Forensic Toolkit (SIFT) was updated

Links: http://www.exploit-db.com/ http://www.offensive-security.com/images/ryu-help-me.png Kid Friendly Podcast http://www.social-engineer.org/framework/Social_Engineering_Framework Free MSFU Course http://www.offensive-security.com/metasploit-unleashed/ SANS SIFT https://computer-forensics2.sans.org/community/siftkit/

Sponsor mention: Sunbelt Software Webinar: Thursday, May 27, 2010, 2PM - 3PM EDT Quarterly Briefing: Turn the tables on Bad Guys: Malware Unmasked

The cyber threat landscape is constantly changing, and even with the most sophisticated security you’re never completely protected from attacks. As part of our mission to ‘keep the bad guys out’, SunbeltLabs presents in this webinar how we use our own sandbox technology to keep a step ahead.

Sunbelt Software’s Lead Security Analyst, Brian Jack and Malware Response Manager, Dodi Glenn will discuss the current threat landscape and dig deeper into some of the most dangerous and complicated threats out there.  During this briefing we will focus on two different types of threats: malicious PDFs and rogue antivirus applications. Learn how to gain an edge when protecting your enterprise.

Whether you are dealing with spear phishing or mass attacks, join us to see how to deploy the right tools and learn how to quickly analyze and unmask malware. New threats require new technologies and techniques to protect yourself and your organization. Sign up now and turn the tables on the bad guys.

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP56.mp3
Category:podcasts -- posted at: 8:33pm EDT

SecuraBit  Episode 55:  10000 Tubes of KY and a Case of Dog Biscuits!

Sponsored by Sunbelt Software!  Creators of the Sunbelt CWSandbox, for all your malware analysis needs!  Visit their website for more details!

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Christopher Mills – @thechrisam
Chris Gerling  – @chrisgerling
Andrew Borel –  @andrew_secbit

Missing Hosts:
Jason Mueller – @securabit_jay

Guests:
Joshua Wright - @joswr1ght http://www.willhackforsushi.com/

- Josh talks about the MiFi hack
- Bluetooth Hacking
- Barcode scanner hacking including the Bluetooth scanner hacks
- SANS SEC617 SEC617 Course
- 617BIT Discount Code for $500 off the vLive! Course
- Upcoming courses taught by Josh Wright http://www.sans.org/security-training/instructors_upcoming.php?id=97
- Pentest summit - Baltimore, MD - Josh will be speaking there.  His talk will be about essential crypto for pentesters.  http://www.sans.org/pen-testing-summit-2010/

General topics:
Mcafee Released a failed (fubar) virus definition Discussion thread
Gmail authentication code stolen
Someone we know was owned

Links:
http://www.willhackforsushi.com/
SEC617 Course
http://www.sans.org/security-training/instructors_upcoming.php?id=97
Bruce Schneier's book list
Dark Reading - Taking Penetration Testing In-House

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP55.mp3
Category:podcasts -- posted at: 12:17pm EDT

SecuraBit  Episode 54 - Lions and Tigers and Banking Trojans, OH MY!

Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit

Guests: Sean-Paul Correll - @lithium -http://malwaredatabase.net/blog/ Threat researcher at Panda Security

According to the Panda Annual security report, 66% of all malware are trojans:

http://www.pandasecurity.com/img/enc/Annual_Report_Pandalabs_2009.pdf

Definition of a Banking Trojan.

Mariposa bot net take down:  http://pandalabs.pandasecurity.com/mariposa-botnet/

Virus Total Web:  http://www.virustotal.com/

Appeared at Security B-side in San Francisco Playing with Fire – Live Demonstration of Today’s Most Dangerous Malware http://www.ustream.tv/recorded/5143692

http://www.securitybsides.com/

Chat with us on IRC at irc.freenode.net #securabit

Direct download: SecuraBit_EP54.mp3
Category:podcasts -- posted at: 11:44am EDT

SecuraBit EP53: Thotcon If you think it you will go to Chicago!

SecuraBit Episode 53:  Thotcon If you think it you will go to Chicago

thotcon - http://www.thotcon.org/

Trustwave's Spider Labs - https://www.trustwave.com/spiderLabs.php

Chat with us on IRC at   irc.freenode.net #securabit

Hosts: Anthony Gartner – @anthonygartner Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit

Guests: Nick Percoc - Thotcon & Trustwave's Spider Labs Zach Fasel - Thotcon & Trustwave's Spider Labs

Links: http://www.thotcon.org/ https://www.trustwave.com/spiderLabs.php SpiderLabs Radio - http://itunes.apple.com/podcast/spiderlabs-radio/id300567984 https://www.trustwave.com/spiderLabs-tools.php

lacking Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay

Direct download: SecuraBit_EP53.mp3
Category:podcasts -- posted at: 1:06pm EDT

SecuraBit Episode 52: To catch a Mule with Krebs on Security!

Hosts: Anthony Gartner – @anthonygartner Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit

Guests: Brian Krebs  - @briankrebs - http://www.krebsonsecurity.com/

VRT Blog Post:

http://vrt-sourcefire.blogspot.com/2010/03/apt-should-your-panties-be-in-bunch-and.html

Eric Chien, Symantec Zeus, King of the Bots: http://www.noryak.net/papers/zeus.pdf

Chat with us on IRC at   irc.freenode.net #securabit

Direct download: SecuraBit_EP52.mp3
Category:podcasts -- posted at: 12:06am EDT

SecuraBit EP51 - Malware Detection With Sunbelt Software

SecuraBit EP51 - Malware Detection With Sunbelt Software

Listen in as we discuss Sunbelt Software's CWSandbox and other products, along with in-depth malware detection and analysis!

#BSidesSF - Tuesday/Wednesday, March 2-3, 2010 @ 10am - 5pm #BSidesAustin - Saturday, March 13, 2010 #BSidesBOS - Saturday/Sunday, April 24-25, 2010 Chat with us on IRC at   irc.freenode.net #securabit

Hosts: Anthony Gartner – @anthonygartner Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit

Guests: Brian Jack - Sunbelt Software Chad Loeven - Sunbelt Software

Links:

http://www.sunbeltsoftware.com/

http://www.sunbeltsoftware.com/Malware-Research-Analysis-Tools/Sunbelt-CWSandbox/

http://www.securitybsides.com/

Direct download: SecuraBit_EP51.mp3
Category:podcasts -- posted at: 11:42am EDT

Shmoocon 2010 Podcasters Meetup - NSFW!!!!!!

This is the audio from the 2010 pod-casters meet up.  This is UNEDITED and completely raw.  This file is NOT safe for work.  You have been warned.

Direct download: shmoo2010-podcastermeetup.mp3
Category:podcasts -- posted at: 9:29am EDT

SecuraBit Episode 50:  Interview with Rob Lee!

SecuraBit Episode 50:  Interview with Rob Lee!

  • What is SANS vLive?
  • Forensics
  • DOD Cyber Crime
  • How the forensics classes are structured.
  • 508 course and how it's changed. Divided up into essentials and then follow on courses.  6 total courses for all of the info.
  • APT - Advanced Persistant Threat
  • Q & A from the IRC

If you haven’t taken the Security 508 course yet we have an excellent  opportunity for you!  Rob will be teaching the SEC508 (Forensics) course  via the SANS vLive! platform beginning 3/23/2010.  Classes will occur  every Tuesday and Thursday until 4/29/2010 from 7-10PM EDT.

Use code SB508 to get a free GCFA certification attempt with the  purchase of the full course. Chat with us on IRC at   irc.freenode.net #securabit

Hosts: Anthony Gartner – @anthonygartner Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit

Guests: Rob Lee - @robtlee

Links: http://phishme.com/ http://phishtank.com/

 

Direct download: SecuraBit_EP50.mp3
Category:podcasts -- posted at: 2:59pm EDT

SecuraBit Episode 49:  ConFoo.ca!

SecuraBit Episode 49:  ConFoo.ca!

Podcasters Meetup - http://www.podcastersmeetup.com/ ShmooCon - Saturday Evening @ 8PM

SANS Discount Code SB508 - Free GCFA attempt when using this link.

Philippe Gamache: Day job is focused on secure programing, developer training and code audit. About ConFoo.ca: -New conference about web technology -PHP Quebec Conference offshoot -Get all the user groups in the Monteral area together to share information -8 Separate tracks at the time

ShmooCon FireTalks

Escaping the clutches of The GOOG - http://www.securabit.com/2010/01/21/escaping-the-clutches-of-the-goog/

Hosts: Anthony Gartner – @anthonygartner Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Nicholas Berthaume - @aricon Andrew Borel –  @andrew_secbit

Guests: Philippe Gamache - ConFoo.ca - @SecureSymfony

Chat with us on IRC at irc.freenode.net #securabit

Links: ConFoo.ca - http://www.confoo.ca/en

Direct download: SecuraBit_EP49.mp3
Category:podcasts -- posted at: 4:10pm EDT

SecuraBit Episode 48:  Shmoocon (The Big Cheese) and PhoneFactor!

Hosts:
Anthony Gartner – @anthonygartner
Christopher Mills – @thechrisam
Jason Mueller - @securabit_jay
Chris Gerling  – @chrisgerling

Guests:
Bruce Potter - Shmoocon - @gdead
Steve Dispensa - CTO and Co-founder of PhoneFactor - http://www.phonefactor.com/about/management-team/steve-dispensa/ @dispensa
Marsh Ray - PhoneFactor - @marshray

Recent goings on:
If you are going to Cybercrime contact Jason Mueller (@securabit_jay) and see if he wants to meet up!
Sean Hausauer and David Shpritz join the crew!  Check out their blog postings!

SANS vLive!
January 26, 2010 @ 2PM EST  - Joshua Wright - Wireless Security (1 hour)
Use coupon code SECURABIT for $20.00 registration fee. Regularly $495.00
http://www.securabit.com/2010/01/13/sans-vlive-with-joshua-wright/

First Guest - Bruce Potter - Shmoocon - @gdead

Logistics of putting on a conference.
New events!
Ticket sales process is constantly evolving.

Wardman Park in 1920's:  http://www.shorpy.com/files/images/29398u.jpg
ShmooCon 2010 FireTalks:  http://www.novainfosecportal.com/2010/01/06/shmoocon-2010-firetalks/
Podcasters Meetup:  http://www.podcastersmeetup.com/

PhoneFactor:
How to fix SSL/TLS in software
The process of working with vendors to get a solution implemented.
Project Mogul

End:
Join us on January 27, 2010 when we speak with Phillipe Gaumeche about the ConFoo.Ca conference.
Chat with us on IRC at irc.freenode.net #securabit

Links:
Shmoocon - http://www.shmoocon.org/
PhoneFactor - http://www.phonefactor.com/

Not on the air:
Andrew Borel – @andrew_secbit

Direct download: SecuraBit_EP48.mp3
Category:podcasts -- posted at: 12:14pm EDT