Network Forensics Puzzle #3 Finalist!
Today, results were posted for Sherri Davidoff and Jonathan Ham’s third network forensics puzzle contest. The puzzles, hosted at forensicscontest.com, are meant to encourage the development of network forensic tools that might be integrated into SANS training and toolkits. Puzzle #3 involved pulling information from an Apple TV device’s network traffic.
I participated in [...]
Using SkyGrabber to Hack Unmanned Drones?
There has been a lot of speculation today surrounding this Wall Street Journal article:
Insurgents Hack U.S. Drones
According to this article, the insurgents were able to capture drone video feeds using software like SkyGrabber. SkyGrabber is, according to its website, essentially a sniffer for satellite Internet connections that can recognize and extract. This works because the [...]
Audio and video of Kaminsky’s DNS talk now available
The kind folks who run Black Hat have gone ahead and released the audio and video of Dan Kaminsky’s talk at Black Hat USA 2008, entitled “Black Ops 2008: It’s The End Of The Cache As We Know It”, or “64K Should Be Good Enough For Anyone”. This is the talk where he discusses the [...]
Dan Kaminksy’s Blackhat USA 2008 slides are now available
Why So Serious – On Dan’s Blog
Everything we knew, plus some really neat tricks.
Man-in-the-middle Fake DNS for Metasploit
On Episode 116 of PaulDotCom Security Weekly, Paul mentioned how it would be nice if one could have a little bit finer control over the behavior of Metasploit’s fake DNS server. It seemed like an easy enough hack, so I’ve thrown this together. I can see this being useful in some situations, and hopefully you [...]
Web Search Scanner module for Metasploit
The other day I decided that I wanted to become more familiar with the internals of the Metasploit Framework, so with the latest svn of the framework and a couple of books on Ruby, I started digging. I decided a fun project would be to port some of my existing tools and scripts into the [...]
I’m calling it: the new cool-guy word is “Weaponize”
…and I couldn’t be happier. I’m going to start writing “weaponized code” instead of “exploits”. This will totally make up for having to give up “reverse-engineering” for “deep analysis” for “legal reasons” ;).
However you feel about people publishing exploits for the DNS flaw already, there’s a selection of them out there now, and you might [...]
Talking about DNS on the Securabyte 1 Podcast
The folks who put on the excellent Securabit podcast have decided to put together a quick and dirty episode-between-episodes on the recent DNS vulnerability. They’ve decided to call these spontaneous episodes “Securabytes”, and this is the first one:
Securabyte Episode 1: DNS Haiku
Since Dan Kaminsky doesn’t leap around the apartment to find his headset in order [...]
Black Ops: The Talks of Dan Kaminsky
Whenever a new sure-fire blockbuster movie sequel comes out, there’s always the attempt to wring some more cash out of the previous entries. There’ll be a DVD box set that runs about $10 a disc, with all the previous films in one nice looking collection. These sell well, both to people new to a series [...]
In Defense of MediaDefender?
I’ve been posting on the Binary Revolution Forums a bit lately, mostly in threads with a technical theme. I’m mostly doing it to sort of contribute to a place that’s popular among people just starting out in the field. Today, a link was posted about the recent attacks against MediaDefender, where a large [...]