sandSite » IT Security

ShmooCon 2012 Talk

branson — Sun, 29 Jan 2012 18:42:36 +0000

I had a great time talking at Shmoocon this year! Thanks to all the people who sent in feedback! I take such very seriously and have already worked to tweak this presentation with those comments in mind. I am putting the Shmoo2012 version of my talk up so people can find it if they’re interested. With out further adieu:

http://sandsite.org/~branson/TTL-Penetration-Shmoo.pdf

If yer interested in me giving this talk for a group, I love to do such things, let me know.

UPDATE: My talk was also mentioned in the Washington Post. My .15 seconds of fame are up!

ShmooCon Paper Accepted

branson — Thu, 15 Dec 2011 22:17:29 +0000

Woot! .. I just got mail from the ShmooCon selection committee, my paper TTL of a Penetration was accepted for a speaking slot at shmoo this year. I’ll be a busy little camper as we approach the ‘con .. but should be LOTS of fun. Can’t wait!

Conferences Conferences

branson — Tue, 15 Nov 2011 18:38:56 +0000

Soo looks like I am going to:
- Usenix LISA Dec 5-9 Boston, MA
– Participating in the Advanced Topics Workshop.. yay!

- ShmooCon Jan 25-27 Washington, Dc
– I’ll actually be there 23rd to teach labs.. always a good time.

- CarolinaCon May 11-13 Raleigh, NC
– I should be there for the shootout the 11th .. woot!

BBC News – Details of 100m Facebook users collected and published

branson — Thu, 29 Jul 2010 11:49:58 +0000

BBC News – Details of 100m Facebook users collected and published.

And this is why I got off facebook. Caught in the net. Now that this ‘database’ is in a convenient file that can be loaded into a database, they’ll be able to trivially connect it with other information like credit cards, job listings, etc. Personal Information is *too* open.

Harsh Words for Professional Infosec Certification

branson — Wed, 21 Jul 2010 16:29:37 +0000

Harsh Words for Professional Infosec Certification.

Very interesting article. Says alot about the state of affairs. How many people have just Security + and are doing system engineering? I’ve seen this many times.

We’re at Yellow

branson — Tue, 20 Jul 2010 12:34:29 +0000

ISC has us at yellow for the latest windows vulnerability. If you’re a security geek.. you should go here at least once every few days to see what’s up.

http://isc.sans.edu/index.html

Lock down your windows boxes

Cool Hacking Tools

branson — Mon, 19 Jul 2010 15:23:55 +0000

So found these on reddit.com this morning:

– http://www.damnvulnerablelinux.org/index.html .. a nice version of linux thats easier to hack than the normal version ( but not much

– http://www.wpacracker.com/ – a payware WPA cracking tool .. also nice .. passwords are getting WAY too easy .. everyone is using 12 characters or more right?

More fun soon.

Rotten Apple?

branson — Wed, 23 Jun 2010 18:03:23 +0000

So this is starting to come out in the press .. finally Apple is being evil. The funny part is android has been doing this exact thing for some time. While my tin-foil hat is fairly thin .. this is the kinda thing that really does bother me about unrestricted use of technology. Someone should create a “Privacy” rating along with a “Moral” rating ( PG, R etc.. ) that can be applied to things so that we as consumers have more awareness of what decisions we’re making. My N900 .. this is an active choice. Tho to be honest .. I dont’ know if AT&T can poll my N900 for the information. I know they can use their towers to DF to w/in 200 feet or so if they want.

Spoke at ECPI

branson — Wed, 23 Jun 2010 13:13:13 +0000

Talked to a group for Security+ students about ‘trends’ in IT security at ECPI last night. Was a fun class and they enjoyed it (i think). I promised to post the slides.. so here they are Thanks to the students that came!