Information Security Blog and News
-
Seems like a decent file dead-drop. I wouldn’t count on the privacy or anonymity of it, but it could be something you can work with, if you take appropriate steps to protect yourself. Might have to play with this a bit later.
-
If you listened to the webcast I linked yesterday, you heard Ed Skoudis talking about all the security tools that are integrating Lua scripting. Here’s a good starting point if you’re moving from other scripting languages to Lua.
-
This is along the same lines as the vulnerabilities I see in student projects here at the university :)
-
Hah! this one’s pretty clever too.
-
Ed Skoudis presents an overview of the new nmap scripting engine, various features of Cain, pass-the-hash attacks, and current research (including memory attacks :) ). Really excellent way to spend an hour or so today.
-
Information on which USB port on your MacBook or MacBook Pro is on a hub with internal devices, and which is on its own. I sure didn’t know that, and I hadn’t thought to look into it, but that info could definitely come in handy, especially if you’re ima
-
If you’re running Debian, or a Debian-based distro such as Ubuntu, then you’ll probably want to update and generate new DSA keys. There’s also a script that helps you look for bad keys.
-
Slick, and a little strangely edited, video of a demonstration of the cold boot memory attack. The interviewee is a co-author on the princeton paper, so they’re likely using ram2usb instead of msramdmp :)
-
New security podcast. I just listened to the first episode and it’s definitely worth subscribing to alongside other required listens like PaulDotCom, Network Security, etc.
-
Things to consider when you’re evaluating a device or software that claims to do crypto securely.
-
Well that about wraps that up.
-
Paul guest-blogs for gnucitizen. Essentially, the crunchy-outer-layer/chewy-center model of security is dead, has been dead for some time, and the sooner you realize it the better.
-
This is as much a note to myself to take a look at this later as it is a recommendation for forensics/recon geeks that read this blog.
-
Polymorphism in PDFs to evade signature detection. Neat!
-
Problems with random number generators. According to the article, it’s mostly a problem with using non-cryptographically secure PRNGs, however I think at it’s core, the main problem is that you shouldn’t be seeding like this.
-
Letting media files run embedded scripts… that makes a lot of sense… NOT
-
New version of WordPress is out, fixes security issues, as usual. Might want to upgrade, fellow bloggers.
-
Some thoughts and links from Halvar Flake on state/intelligence sponsored information ops.
-
Eric Monti reverse engineers a *cough* “toaster” that is apparently running VxWorks
-
This guy’s a sicko, but this article reminded me of an old Back Orifice 2000 incident that I’ll link next…
-
…and this is what my previous bookmark of the webcam hacking reminded me of. Classic.