Core Security: Fun with my web logs

Just a little noodling around, followed by fun facts:

HacBook:~ wesley$ nslookup coresecurity.com
Server:		10.0.0.1
Address:	10.0.0.1#53

Non-authoritative answer:
Name:	coresecurity.com
Address: 208.253.45.70

HacBook:~ wesley$ whois 208.253.45.70
MCI Communications Services, Inc. d/b/a Verizon Business UUNET1996B (NET-208-192-0-0-1)
208.192.0.0 - 208.255.255.255
CORE SECURITY TECHNOLOGIES UU-208-253-45-64-D9 (NET-208-253-45-64-1)
208.253.45.64 - 208.253.45.127

# ARIN WHOIS database, last updated 2009-06-28 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.

HacBook:~ wesley$ grep 208.253.45 *.log > corelog_lol.txt
HacBook:~ wesley$ wc -l corelog_lol.txt
124 corelog_lol.txt

McGrew Security Late Show Fun Facts about Core Security visitors to the site :

• 1 IP address
• 12 different computers identified through unique User-Agent strings
• 23 separate requests for the “Core Security: You Just Might Not Be Cool Enough For Their Party” story
• 13 separate requests for the “Core Security Apologizes, Not Cool Enough for Core 2009 Gathering Proposed” follow-up
• 1 URL mis-copy-pasted
• 1 Core Security visitor that poked around my WordPress login page

And my favorite:

• 1 computer with the FunWebProducts adware/spyware.

Update 6/29/09 3:26 PM

Someone at Core just figured out that mcgrewsecurity.com ranks higher than coresecurity.com for their own party:

20090629.log:208.253.45.86 - - [29/Jun/2009:14:15:29 -0400]
"GET /2009/06/24/core-security-apologizes-not-cool-enough-for-core-2009-gathering-proposed/ HTTP/1.0" 200 5366
"http://www.google.com/search?q=core+security+party+at+black+hat&rls=com.microsoft:en-us:IE-SearchBox&ie=UTF-8&oe=UTF-8&sourceid=ie7&rlz=1I7ADBF_en"
"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)"

(and the FunWebProducts one came back)