Securabit

Securabit Episode 73:  Eber Kneber and botnet stuntmen January 12, 2011 Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling  – @chrisgerling Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: We discuss Kneber and other fun security topics with Alex Cox of NetWitness @perpetualsec http://www.networkforensics.com/ General topics: Kneber Botnet Mariposa Responsible disclosure Evil Virustotal http://socialmediasecurity.com/downloads/Facebook_Privacy_and_Security_Guide.pdf PROGRAMMABLE HID USB KEYSTROKE DONGLE: USING THE TEENSY AS A PEN TESTING DEVICE https://www.defcon.org/html/defcon-18/dc-18-speakers.html#Crenshaw http://www.irongeek.com/i.php?page=videos/dojocon-2010-videos Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats. Upcoming events ShmooCon (28 - 31 Jan 2011) RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14 - 15

SecuraBit  Episode 72:  Take risks, get owned! Recorded on December 29, 2010 Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling  – @chrisgerling Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Jack Jones discusses Risk Assessment and the FAIR method http://riskmanagementinsight.com/ General topics: Risk Management, Small biz vs Enterprise Monte Carlo? How to Measure Anything: Finding the Value of Intangibles in Business by Douglas W. Hubbard http://www.amazon.com/How-Measure-Anything-Intangibles-Business/dp/0470539399/ref=tmm_hrd_title_0 OnePassword - http://agilewebsolutions.com/onepassword KeePass - http://keepass.info/ LastPass - http://lastpass.com/ Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats. Upcoming events #BSidesMSP (7 Jan 2011) ShmooCon (28-31 Jan 2011) RSA Conference 2011 (14 -18 Feb 2011) #BSidesSanFrancisco (14

SecuraBit  Episode 71: Managing our Careers with Lee KushnerDecember 15, 2010Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChris Gerling  – @chrisgerlingChristopher Mills – @thechrisamAndrew Borel –  @andrew_secbitGuests:Lee Kushner - @LJKush - http://www.ljkushner.com/ - http://www.infosecleaders.com/General topics:Discussion on Career ManagementThe importance of having a career plan.It’s a very crowded market in information security, and it’s getting more so every day.www.infosecleaders.com/2010-compensation-survey/FAQ: Compromised Commenting Accounts on Gawker Media http://lifehacker.com/5712785/OnePassword - http://agilewebsolutions.com/onepasswordKeePass - http://keepass.info/LastPass - http://lastpass.com/Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats.Upcoming events#BSidesBerlin (28-30 Dec 2010)#BSidesMSP (7 Jan 2011)ShmooCon (28-31 Jan 2011)RSA Conference 2011 (14 -18 Feb 2011)#BSidesSa

SecuraBit  Episode 70: Following the wh1t3Rabbit, Hat-tricks with a wh1t3RabbitDecember 1, 2010Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChristopher Mills – @thechrisamChris Gerling  – @chrisgerlingAndrew Borel –  @andrew_secbitGuests:HP's Rafal Los - @wh1t3RabbitSubscribe to his blog at http://hp.com/go/white-rabbitGeneral topics:Shmoocon tickets, who’s got them?Hat-trick http://en.wikipedia.org/wiki/Hat-trickPassword security, does it really matter?Application security to detect and prevent malicious code.Diaspora https://joindiaspora.com/Security MetricsStory time with RafalRSnake shutting down his blog after 5 years and 1000 posts http://ha.ckers.org/FTC Staff Issues Privacy Report Offers Framework for Consumers, Businesses, and Policymakers: Endorses “Do Not Track” to Facilitate Consumer Choice About Online Trackinghttp://www.ftc.gov/opa/2010/12/privacyreport.shtmSANS Discount:Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is g

SecuraBit Episode 69: Picking Locks and Messing up Podcasts, Welcome to Gringo Village! November 3, 2010 Hosts: Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Anthony Gartner – @anthonygartner http://anthonygartner.com Jason Mueller – @securabit_jay Rob Fuller – @mubix Tim Krabec – @tkrabec http://www.SMBMinute.com Guests: Deviant Ollum - http://deviating.net/ - Author of Syngress Practical Lock Picking General topics: Practical Lock Picking By Deviant Ollam http://www.syngress.com/hacking-and-penetration-testing/Practical-Lock-Picking/ Review submitted by a coworker: Practical Lock Picking by Deviant Ollum was an enjoyable read. The author does a good job of covering the art and science of picking locks. He chose two of the most common types of locks for the bulk of his material which helps keep the focus of the book tight. He leads the reader from the basic operational principles of the locks, to flaws in the design & manufacture and finally how to pick the locks. The coverage of p

SecuraBit  Episode 68: Teaching for handbags! Hosts: Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Anthony Gartner – @anthonygartner http://anthonygartner.com Jason Mueller – @securabit_jay Guests: Kevin Johnson discusses SANS SEC 542 Web App Pen Testing, Base, etc General topics: New Apple Macbook Air. Recent Security Zynga collecting data about Facebook users. Social engineering at a capture the flag event. Pros and cons to using social networks. Attacking your web applications for a more secure application. Samurai WTF (Web Testing Framework) http://samurai.inguardians.com/ Laudanum: Injectable Functionality http://laudanum.inguardians.com/ Basic Analysis and Security Engine (BASE) project http://base.secureideas.net/ Use our discount code "Connect_SecuraBit10" to get 10% off of ANY training course. The discount code is good for all SANS courses in all formats. Upcoming events #BSidesDFW November 6, 2010 #BSidesDE November 6, 2010 AppSec DC 2010 November 8-12, 2010 #BSidesOttawa November 1

  SecuraBit  Episode 67:  We're all gonna get HAX!October 6, 2010Hosts:Chris Gerling  – @chrisgerlingChristopher Mills – @thechrisamAndrew Borel –  @andrew_secbit Anthony GartnerGuest: Roger GrimesGeneral topics:Authored eight books, and co-authored another 4Chasing hackers for 23 yearsSCADA issuesWhat the bad guys are doing? Black hat cloud backup?Offline patch and reset days to recover from a issue.Whitelisting may be a solution, that is just too hard to implement in many environments.Needs full sign off from the organizationDifferent levels of identificationSyngress book of the month club for episode 68Utilize code 36449 for a discount on books from Syngress!Executives should have Macs because it makes it easier on the pen testerPatching and warrantiesSANS Connector Program10% of any SANS events or training use coupon code Connect_SecuraBit10Lenny Zeltser Facebook Social Captcha Authenticationhttp://blog.zeltser.com/post/1258010402/facebook-social-captcha-authenticationUpcoming eventsHacker Halted http://

  SecuraBit  Episode 66:September 22, 2010 Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChris Gerling  – @chrisgerlingChristopher Mills – @thechrisamJason Mueller – @securabit_jayAndrew Borel –  @andrew_secbit   Guests:Aaron Barr (HB Gary Federal) @aaronbarr We discuss HBGary with Aaron, and delve into some fun topics like malware analysis, forensics, and other technical skills. General topics:Media Sponsor for:SecTor 2010 - http://www.sector.ca/Security Training October 25.Conference Sessions October 26 & 27, 2010.Twitter XSShttp://status.twitter.com/post/1161435117/xss-attack-identified-and-patched Robin SageMalware analysisBehavior of malware in memory FGET is pretty pimp (free tool that remotely images NTFS volumes)https://www.hbgary.com/community/shawnblog/fget-v10-goes-live/ Free tools from HB Garyhttps://www.hbgary.com/community/free-tools/ ForensicsHow flypaper plays into image grabbing   Upcoming eventsHacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14thLo

  SecuraBit  Episode 65: Application Security From the Ground Up!September 8, 2010 Hosts:Anthony Gartner – @anthonygartnerJason Mueller  – @securabit_jayChristopher Mills –  @thechrisamGuests:Jeff Morgan * Product manager for HP’s Application Security Center product line * 20+ years experience developing commercial software solutions in industries ranging from healthcare to payroll to commercial printing * Joined SPI Dynamics in 2006, which was later acquired by HP * Previously a software engineer and held positions in development, QA, support and account management General topics:  Application Security Development Lifecycle Flash, as usual NoScript Intel and McAfee Upcoming eventsHacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14thLouisivlle Infosec 10/7. http://www.louisvilleinfosec.com/Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlantaHacKid - http://www.hackid.org/ 10/9-10/10Phreaknic 10/15. http://www.phreaknic.info/pn14/ SecTor 2010 - http://www.sector.ca/ Security Tr

SecuraBit  Episode 64:  A whole lot of organized crime going on! August 25, 2010 Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling  – @chrisgerling Andrew Borel –  @andrew_secbit Guests: Bryan Sartin - Director of Investigative Response at Verizon Business General topics: Verizon RISK Team - http://www.verizonbusiness.com/products/security/risk/ Bryan Sartin, the Director of Investigative Response at Verizon Business, discusses the 2010 Verizon Data Breach Report http://www.verizonbusiness.com/resources/reports/rp_2010-data-breach-report_en_xg.pdf VERIS Framework - https://verisframework.wiki.zoho.com/ MalCon: A Call for ‘Ethical Malcoding’ http://krebsonsecurity.com/2010/08/malcon-a-call-for-ethical-malcoding/ SecTor 2010 - http://www.sector.ca/ Security Training October 25. Conference Sessions October 26 & 27, 2010. The real iTunes fraud vulnerability: Gullible users - http://news.cnet.com/8301-13579_3-20014481-37.html Upcoming events Hacker Halted http://www.hackerhalted

SecuraBit Episode 63:  Walking to the Waffle House with Andy Willingham August 11, 2010 Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Chris Gerling  – @chrisgerling Christopher Mills – @thechrisam Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Andy Willingham (Southern Fried Security Podcast) - @andywillingham http://www.andyitguy.com/blog/ General topics: DEFCON/BLACKHAT/BSides Recap --Chris’s experience this year, and a review of the medical facilities in Las Vegas --General entertaining banter Shiny Old VxWorks Vulnerabilities http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html Facebook name extraction based on email/wrong password http://seclists.org/fulldisclosure/2010/Aug/130 Apple Fixes PDF Vunerability that allowed webbased Jail Break. iOS 4.0.2 Software Update http://support.apple.com/kb/DL1061 Interview with Andy Willingham ShmooCon 2011 Dates Announced http://tinyurl.com/29nzc46 Microsoft drops the patch bomb http://www.securabit.com/2010/08

SecuraBit  Episode 62: Visualizing Data with NetWitnessHosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChris Gerling  – @chrisgerlingChristopher Mills – @thechrisamAndrew Borel –  @andrew_secbitGuests:Eddie Schwartz - @eddieschwartzGeneral topics:BSidesLV http://www.securitybsides.com/BSidesLasVegasBlackHat https://www.blackhat.com/html/bh-us-10/bh-us-10-home.htmlDefcon https://www.defcon.org/html/defcon-18/dc-18-schedule.htmlShmoocon Woot Video http://www.youtube.com/watch?v=HJ0ypgZU_D0NetWitness Visualize http://visualize.netwitness.com/Brief panel on certifications.iPhone App Now Available. http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8http://itunes.apple.com/us/podcast/securabit/id280048405Upcoming eventsSouth Florida ISSA’s Hack the flag and chili cook-off  Saturday August 14, 2010 from 12:00pm - 5:00pmhttp://sfissa.org/index.php/sfissa-mm-events/htf-main/85-hack-the-flag-2010Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14thLinks:http://securabit.c

SecuraBit Episode 61: Reverse Engineering Malware with a Spider Monkey Hosts: Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Tim Krabec – @tkrabec http://www.SMBMinute.com Nicholas Berthaume -- @nberthaume https://www.bordergatewayprotocol.net Anthony Gartner – @anthonygartner http://anthonygartner.com Guests: Guest: Lenny Zeltser - @lennyzeltser http://zeltser.com/ General topics: Reverse Engineering Malware New Linux Distro to analyze malware REMnux: A Linux Distribution for Reverse-Engineering Malware http://zeltser.com/remnux/ Based on Ubuntu Released just 5 days ago - July 8, 2010 2500 Downloads so far VMWare appliance Live Distro going out to Source Forge soon Enlightenment as window manager, (no gnome or kde) Just what you need to do the analysis Lightweight as possible Tools Emulate Services Allow malware to interact with your own resources how does it differ from CW Sandbox Determine the signs of comprise to compare with your production environment JS Unpack Since it is an Ubuntu dist

 SecuraBit  Episode 60: Free Calamari!!! Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Jason Mueller – @securabit_jay Tim Krabec – @tkrabec http://www.SMBMinute.com Guests: Christopher Boyd (Sunbelt Software) http://en.wikipedia.org/wiki/Christopher_Boyd http://www.vitalsecurity.org/ http://sunbeltblog.blogspot.com/ General topics: Chris speaks about how he got involved in the position he is in now.  He also got into how he basically social engineers and discusses his blog. Dodgy Dr Who Games Orkut Shenanigans The Sunbelt Security Blog Fun with Internet Trolls How Drugs and Stabby Things Led to a Career in Security Internet Kill Switch Twitter Agrees to Data-Security Audits HacKid -http://www.hackid.org/ Links: FTC Requires Twitter To Set Up Data-Security Audits http://news.yahoo.com/s/nf/20100624/tc_nf/74031 Chat with us on IRC at irc.freenode.net #securabit

SecuraBit Episode 59: Too many acronyms, my head is going to explode! Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Andrew Borel –  @andrew_secbit Chris Gerling  – @chrisgerling Guests: Dan Philpott discusses NIST, Information Assurance, SCAP, FISMA, etc Contact info: Twitter: @danphilpott General topics: Federal Information Security Management Act (FISMA) Implementation Project http://csrc.nist.gov/groups/SMA/fisma/index.html Special Publications (800 Series) http://csrc.nist.gov/publications/PubsSPs.html Small Business Corner (SBC) http://csrc.nist.gov/groups/SMA/sbc/index.html FISMApedia http://fismapedia.org/index.php?title=Main_Page The Security Content Automation Protocol (SCAP) http://scap.nist.gov/ -Change Management Windows Sysinternals http://technet.microsoft.com/en-us/sysinternals/default.aspx Sysinternals Suite http://technet.microsoft.com/en-us/sysinternals/bb842062.aspx Links: http://csrc.nist.gov/ Chat with us on IRC at irc.f

SecuraBit Episode 58: Forensic Goodness with Harlan Carvey Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Harlan Carvey http://windowsir.blogspot.com/ Tools:  http://tech.groups.yahoo.com/group/win4n6/ General topics: Timeline creation Regripper Forensic trends SIFT Lance Mueller http://www.forensickb.com/ Are you interested in taking an upcoming SANS course?  Dr. Eric Cole is teaching the upcoming SANS vLive! 501 course which starts on June 22.  You can register for the course using this link, and coupon code 501SB to save $500!

Hosts:Anthony Gartner – @anthonygartner http://anthonygartner.comChristopher Mills – @thechrisamChris Gerling  – @chrisgerlingAndrew Borel –  @andrew_secbit   Guests:Dr. Eric Cole, Ph.D. - @drericcole General topics:Mr. Cole is teaching the upcoming SANS vLive! 501 course which starts on June 22.  You can register for the courseusing this link, and coupon code 501SB to save $500! We discussed VOIP security, or the lack thereof. Signature based security solutions are going the way of the dinosaur, it's all about behavior and dynamic detection, such as heuristics now. How to protect your privacy online:http://twitter.com/ChrisPirillo/status/13881888168   Links:http://www.sans.org/security-training/instructors_upcoming.php?id=34http://www.securityhaven.com/Sunbelt Software Webinar: Thursday, May 27, 2010, 2PM - 3PM EDTQuarterly Briefing: Turn the tables on Bad Guys: Malware Unmasked The cyber threat landscape is constantly changing, and even with the most sophisticated security you’re never completely protect

SecuraBit  Episode 56: "Try Harder" - Used with permission Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Chris Hadnagy - @humanhacker Operations Manager and involved with www.offensive-security.com www.backtrack-linux.org http://www.social-engineer.org/ General topics: MSFU course Saturday the 8th from 10am to 5pm in Louisville, KY‎ Chris Speaks of a new kernel update released around the day of recording for Backtrack 4 Since you are able to listen to this podcast the DNS Security Update did not affect you SANS Investigative Forensic Toolkit (SIFT) was updated Links: http://www.exploit-db.com/ http://www.offensive-security.com/images/ryu-help-me.png Kid Friendly Podcast http://www.social-engineer.org/framework/Social_Engineering_Framework Free MSFU Course http://www.offensive-security.com/metasploit-unleashed/ SANS SIFT https://computer-forensics2.san

Sponsored by Sunbelt Software!  Creators of the Sunbelt CWSandbox, for all your malware analysis needs!  Visit their website for more details! Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Andrew Borel –  @andrew_secbit Missing Hosts: Jason Mueller – @securabit_jay Guests: Joshua Wright - @joswr1ght http://www.willhackforsushi.com/ - Josh talks about the MiFi hack - Bluetooth Hacking - Barcode scanner hacking including the Bluetooth scanner hacks - SANS SEC617 SEC617 Course - 617BIT Discount Code for $500 off the vLive! Course - Upcoming courses taught by Josh Wright http://www.sans.org/security-training/instructors_upcoming.php?id=97 - Pentest summit - Baltimore, MD - Josh will be speaking there.  His talk will be about essential crypto for pentesters.  http://www.sans.org/pen-testing-summit-2010/ General topics: Mcafee Released a failed (fubar) virus definition Discussion thread Gmail authentication code stolen Someone w

Hosts: Anthony Gartner – @anthonygartner http://anthonygartner.com Christopher Mills – @thechrisam Chris Gerling  – @chrisgerling Jason Mueller – @securabit_jay Andrew Borel –  @andrew_secbit Guests: Sean-Paul Correll - @lithium -http://malwaredatabase.net/blog/ Threat researcher at Panda Security According to the Panda Annual security report, 66% of all malware are trojans: http://www.pandasecurity.com/img/enc/Annual_Report_Pandalabs_2009.pdf Definition of a Banking Trojan. Mariposa bot net take down:  http://pandalabs.pandasecurity.com/mariposa-botnet/ Virus Total Web:  http://www.virustotal.com/ Appeared at Security B-side in San Francisco Playing with Fire – Live Demonstration of Today’s Most Dangerous Malware http://www.ustream.tv/recorded/5143692 http://www.securitybsides.com/ Chat with us on IRC at irc.freenode.net #securabit