Clement, Nathalie, and Alain the Portals administrators wishes you a warm welcome.
Calendar of Upcoming Classes and Events
Great supplements to help you reach your certification goals
Modeling Security Pentests - New Issue of WebAppPentesting is Out! Posted by cdupuis on Wednesday, 25 January 2012 @ 12:58:26 EST (65 reads) TopicHakin9
Anonymous writes "
Inside Web App Pentesting:
Open Source Web Application Security Testing Tools by Vinodh Velusamy
Author shows the significance of Open Source Web Application Security Testing Tools. As he claims „When you choose and use good tools, you’ll know it. Amazingly, you’ll minimize your time and effort installing them, running your tests, reporting your results – everything from start to finish.
Most importantly, with a good web vulnerability scanner you’ll be able to maximize the number of legitimate vulnerabilities discovered to help reduce the risks associated with your information systems. At the end of the day and over the long haul, this will add up to considerable business value you can’t afford to overlook”.
More Articles:
- Modeling Security Penetration Tests with Stringent Time Constraints by Alan Cao - The puzzlepices by Daniel Clemens - WebAppSecurity for Newbies part 2 Herman Stevens - Web Application Common Vulnerabilities – Part I by Bryan Soliman - CYBER STYLETTO by Mike Brennan and Richard Siennon
SUBSCRIBE NOW AND GET 2 AMAZING E-BOOKS !
1. CISO's Guide to Penetration Testing: A Framework to Plan, Manage, and Maximize Benefits details the methodologies, framework, and unwritten conventions penetration tests should cover to provide the most value to your organization and your customers.
2. In his new book "Save the Database, Save the World!" John Ottman captures the essence of the threats we face to the information that drives business. Organized crime, underhanded competitors and even foreign governments are looking to gain any financial, competitive or operational advantage and these enemies are going directly after the databases and the applications that access data.
Tech Gyan: One Link Facebook Can Facebook accounts be hacked? Is it be possible to access your account without your permission and without knowing your username and password? Unfortunately “YES” is the answer.
Legal Gyan: Powers of Government under the Information Technology Act, 2000 Internet Censorship is today‘s hot topic with the passage of statements by our Honorable Ministers. But the billion dollars question is ?Can online activities of individuals be censored/monitored in India?
Tool Gyan: SQLMAP – Automated Sql Injection Testing Tool Sql injection is one of the most common vulnerability found in web applications today. Exploiting SQL Injection through manual approach is somewhat tedious. Using flags like ?or 1=1–? , ?and 1>2? we can find out if vulnerability is present but exploiting the vulnerability needs altogether different approach. Tools like Sqlmap, Havij and Pangolin are helpful in exploiting sql injection.
Matriux Vibhag: Setting up and Getting started with Matriux Krypton Wish you a very happy and prosperous new year from team Matriux. 2011 has been a great year for us where we along with CHmag have made it possible to reach you better. A special thanks to CHmag team for making it with us. It has been noticed that due to a custom and special installer MID used in Matriux Krypton, many users are confused on how to get Matriux setup on their Hard disk or VirtualBox, so this month we bring you with how to setup and get started with Matriux Krypton, a better way to start 2012.
Mom’s Guide: Social Networking and its Application Security Social Networks have been an important part of our life, yes, we tweet for photos we click, every moment of happiness, sadness and the news around, we update our status if we start a relationship or end one, or even travel itinerary and hotel check-ins, movie moments, fun with friends, in fact everything that we do every moment in our life is open to the world we want to share. Play games with friends and make new friends.
spt is a simple concept with powerful possibilities. It is what it’s name implies: a simple phishing toolkit.
The basic idea we (the spt project) had was that wouldn’t it be cool if there were a simple, effective, easy to use and free (most importantly!) tool that information security professionals could use to evaluate and train what we all know is the weakest link in any security minded organization: the people. Since the founders of the spt project are themselves information security professionals by day (and possibly either LOL cats or zombies by night), they themselves faced the frustration of dealing with people within their own organizations that claimed to know better, but 9 times out of 10 fell for the most absurdly obvious phishing emails ever seen. A malware outbreak here, a stolen password and loss of critical organizational data there and the costs of dealing with the results of phishing can get to be astronomical pretty darn quickly!
Enter spt. spt was made from scratch, like a baby (or maybe a zombie) with the goal of giving over-worked and under-staffed information security professionals a simple tool (more like a framework, as we hope to add more features over time) that could be used to identify and train those weakest links. spt is a fully self-contained phishing email toolkit that can be installed, configured and phishing in less than 15 minutes. Its design is modular and open-ended allowing for future expansion and additional features via easy to snap-in modules that are simply uploaded in the administration dashboard. Why not try out spt today and see who your weakest link is?
Why do we care about phishing?
Simple answer: phishing has become one of the easiest ways to remotely separate people from that which is important to them.
These articles give some good insights into why phishing is on the rise and why you, as an information security professional, should be worried about it.
- Travel, education sectors most vulnerable to phishing
Researchers sent simulated phishing messages to employees at more than 3,500 small and midsize enterprises (SMEs) and found that recipients at nearly 500 companies, or 15 percent, clicked on a link contained in the message.
- Imperva finds master hacker who dupes thousands into phishing army
A recently released, next-generation phishing toolkit promises to automate the tedious task of tricking people into visiting websites designed to steal their financial information. Even better, the toolkit is free. The only hitch: the creators added a backdoor, allowing them to also amass all of the data captured by their phishing toolkit, no matter who uses it.
- Phish Tastes Better Than Spam
A major source of survival for spammers is consumer spending. With the recession eroding world economies, consumer spending has taken a major hit. Spammers, who thrived on luring consumers to spend money, have definitely been dealt a severe blow. After all, who is going to be lured by spammed products during tough financial circumstances? What logically follows in the worldview of a spammer is the money in your bank account rather than that in your purse. Or, in other words, spammers will shift to baiting consumers with phishing emails to try and steal banking credentials when they know their spam campaigns aren’t working.
The problem is big, and getting bigger. Protect your network, your organization and your people…from your people
The U.S. Congress is currently considering two bills -- one in the House of Representatives called SOPA (Stop Online Piracy Act) and another in the Senate called PIPA (Protect IP Act). These bills both attempt to use similar methods to further criminalize and police intellectual property infringement. Although protecting intellectual property is important, these bills would use heavy-handed tactics that would censor and splinter the Internet.
SOPA and PIPA would grant the U.S. government the ability to block almost any website on the Internet if the site is perceived to be an "infringing site." Search engines would be required to remove the site from their search listings, payment processors and advertisement networks would be forbidden from doing business with the site, and ISPs could be forced to block access to the site for Americans. The bill provides little detail about what would constitute an infringing site, which makes the potential for abuse far greater. We have already seen how these kind of systems can be abused. In 2010, ICE (Immigration and Customs Enforcement) mistakenly seized a domain name belonging to a music blog and labeled it as a "rogue site" — the domain name was not returned until a year later (source: http://nyti.ms/uF73mZ). If you would like to see a video explanation of how the bill works and its dangers, please go here: http://vimeo.com/31100268
Site5 has publicly declared our opposition to both bills, and we encourage you to do the same. Contact your representatives in Congress to let your opposition to these bills be known! To locate the contact information for your representatives, visit one of the following websites:
Another way to get involved in the fight against SOPA and PIPA is to join in on the blackouts. Many well-known websites such as Wikipedia, Google, and Reddit are demonstrating their opposition, and you can too. Site5 has sponsored a WordPress plugin for participating in blackouts, and it features an easy setup and configuration options within the WordPress admin area:
OWASP Long Island Meeting - A hands-on demo of the top web application risks Posted by cdupuis on Wednesday, 18 January 2012 @ 10:41:46 EST (152 reads) TopicOWASP
OWASP Meeting - A hands-on demo of the top web application risks - Thursday, February 16, 2011
Adelphi University, Garden City, New York
You are invited to the OWASP Long Island chapter meeting. In a continuation of the previous meeting; we have once again organized a lab to demonstrate and discuss various OWASP top 10 vulnerabilities. Please register by using the link below...
When: Thursday, February 16, 2011; 7:00pm - 9:30pm
Where: IT conference room in the lower level of Hagedorn Hall of Enterprise (Building HHE on Map upper right) Adelphi University, Garden City, NY 11549-1000. Google map. Campus Map Once at the building, enter the building from the North and go down the stairs, knock on the door to be let in. How Much: Free. Pizza and beverages will be provided. This event is supported 100% by OWASP Long Island volunteers. RSVP required: Registration Details: This chapter meeting has been organized to be a lab; as a result, space is limited in the room to a maximum of 18 people.
Who Are We: We are volunteers of OWASP, a worldwide charitable organization focused on improving the security of application software. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
Meeting Agenda: Dr. Kees Leune - Lab utilizing some of the OWASP 10 vulnerabilities with BackTrack 5.
Topics: Overview of BackTrack Overview of some tools on BackTrack (nmap, JohnTheRipper,MetaSploit) Overview of the lab challenge (covers multiple owasp top 10 vulns)
Bring your own laptop: Laptops are needed if you wish to participate in the lab exercise. Each participant will be provided a copy of Backtrack 5 R1, laptops should be capable of booting off a DVD. Cables, power strips, etc ... will be provided; but make sure you have your own power adapter.
About the Speaker: Dr. Kees Leune is an Information Security Officer, Strategist, Professor, Mentor, Adviser, Consultant, Speaker and occasional open source developer. He blogs at http://www.leune.org and can be found on Twitter as @leune. Kees has extensive experience in information security and holds several professional certifications, including the CISSP, GCIH, GCFA, CISM, and CISA.
LACSEC 2012, May 6-11, 2012, Quito, Ecuador Posted by cdupuis on Monday, 16 January 2012 @ 12:43:47 EST (146 reads) TopicTraining
***************************************** CALL FOR PRESENTATIONS ***************************************** LACSEC 2012 7th Network Security Event for Latin America and the Caribbean May 6-11, 2012, Quito, Ecuador http://lacnic.net/en/eventos/lacnicxvii/
LACNIC (http://www.lacnic.net) is the international organization based in (Uruguay) that is responsible for administrating IP address space, Reverse Resolution, Autonomous System Numbers and other resources for the region of Latin America and the Caribbean on behalf of the Internet community.
The 7th Network Security Event for Latin America and the Caribbean will be held in Quito, Ecuador, within the framework of LACNIC's seventeenth annual meeting (LACNIC XVII). This is a public call for presentations for that event.
The topics of interest include, but are not limited to, the following:
* Honeypots, network monitoring and situational awareness tools in general. * Fighting spam, particularly spam from origin (SPF, DKIM and related technologies. Email reputation) * Fighting phishing and pharming * Fighting malware * Internet protocol security * IPv6 security * DNSsec * Security of network infrastructure services (DNS, NTP, etc.) * Web security * DoS/DDoS response and mitigation, botnets * Authentication and access control * Security in the cloud * Protection of critical infrastructure * Security in mobile systems * Computer security incident response teams (CSIRTs): creation, management, experiences * Security in corporate environments, compliance and auditing, return on security investments * Security management (procedures, operational logs, records, etc.) * Risk management in Information Security * Computer forensics * Protection of privacy * Legal aspects relating to computer security
Guidelines for Presenting Proposals
Proposals for the 7th Network Security Event for Latin America and the Caribbean (LACSEC 2012) must be presented taking into account the following considerations:
* The proposal may consist of a paper, or (alternatively) an Extended Abstract plus a draft version of the slides to be used for the presentation. * Proposals may be presented in English, Portuguese or Spanish. * Proposals must be submitted in Portable Document Format (PDF) * Submissions must be created directly using a word processing system (scanned articles will not be accepted) * Presentations may not be longer than 30 minutes.
Submitting a Proposal
Those interested in presenting at LACSEC 2012 must send the following information to <comite_seguridad@lacnic.net> within the deadlines set forth below:
* Full title of the presentation * A paper or, alternatively, an Extended abstract and a draft of the slides to eb used for the presentation. The paper should not be longer than 10 pages. The extended abstract should not contain more than one thousand (1000) words. The Evaluation Committee may, at its sole discretion, request additional or omplementary information. * Full name, email address and organization with which the author (or authors) of the submission is affiliated
For more information, please don't hesitate to contact the Evaluation Committee at <comite_seguridad@lacnic.net>.
Proposal Evaluation
The Evaluation Committee that has been created for this purpose will evaluate proposals based on the following basic criteria:
LACNIC will cover the registration fee for those authors whose presentations are accepted. Speaker travel and accommodation expenses, however, will not be covered.
Presenters who require financial assistance to attend the event may apply for the LACNIC Financial Assistance Program. Please read the corresponding instructions <http://lacnic.net/en/eventos/lacnicxvii/>. In no case does applying for the sponsorship program guarantee that financial assistance will be granted. For more information please contact LACNIC staff at <becas@lacnic.net>.
IMPORTANT DATES
* Deadline for proposal submission: February 15th, 2012 * Notification of acceptance: February 27th, 2012 * Deadline for submitting the final version the presentation: May 6th, 2012
7th Network Security Event for Latin America and the Caribbean (LACSEC 2012)
Chair Fernando Gont (SI6 Networks/UTN-FRH, Argentina)
Evaluation Committee Iván Arce (Argentina) Lorena Ferreyro (Consultora Independiente, Argentina) Javier Liendo (Cisco, Mexico) Carlos Martinez Cagnazzo (LACNIC, Uruguay) Reinaldo Mayol (Universidad Pontificia Bolivariana, Colombia) Domingo Montanaro (iSight Partners, Brazil) Jose Miguel Parrella Romero (Debian developer, Ecuador) Patricia Prandini (ADACSI, Argentina) Javier Romero (JaCkSecurity, Peru) Arturo Servin (LACNIC, Uruguay) Liliana V. Solha (CAIS/RNP, Brazil) Leonardo Vidal (ISOC Capitulo Uruguay, Uruguay)
New Issue of PenTest Extra Magazine is available Posted by cdupuis on Monday, 16 January 2012 @ 11:26:04 EST (167 reads) TopicHakin9
New Issue of PenTest Extra Magazine is available! Download the Free Sample Issue to check the content and read Free article, just click here.
Read free article "XSS & CSRF: Practical exploitation of post-authentication vulnerabilities in web applications" by Marsel Nizamutdinov The goal of this article is to demonstrate the real danger of post-authenticated vulnerabilities. The author will not explain the basics of web application attacks in this article, as that has already been done many times before by others. He will focus on a practical way to exploit post-authentication XSS's and CSRF, which remain a highly underestimated attack vector in the security scene.
Inside:
XSS & CSRF: Practical exploitation of post-authentication vulnerabilities in web applicationsby Marsel Nizamutdinov
Discovering Modern CSRF Patch Failuresby Tyler Borland
Business Logic Vulnerabilities via CSRFby Eugene Dokukin
XSS Using Shell of the futureby Sow Ching Shiong
Cross-Site Request Forgeryby Jamie
Security Resolutions for 2012by Rishi Narang
Interview with Peter N. M. Hansteenby PenTest Team
Get For Free "The Book of PF" by Peter N. M. Hansteen! Buy annual subscription of PenTest and receive:
Free Ebook"The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall"worth $30.00 Today's system administrators face increasing challenges in the quest for network quality, and The Book of PF can help by demystifying the tools of modern *BSD network defense. But, perhaps more importantly, because we know you like to tinker, The Book of PF tackles a broad range of topics that will stimulate your mind and pad your resume, including how to:
Create rule sets for all kinds of network traffic, whether it is crossing a simple home LAN, hiding behind NAT, traversing DMZs, or spanning bridges
Use PF to create a wireless access point, and lock it down tight with authpf and special access restrictions
Maximize availability by using redirection rules for load balancing and CARP for failover
Use tables for proactive defense against would-be attackers and spammers
Set up queues and traffic shaping with ALTQ, so your network stays responsive
Master your logs with monitoring and visualization, because you can never be too paranoid
If you buy PenTest annual subscription, you will receive 48 Issues of PeneTest per year and get:
PenTest (release date: 1st of each month) – 50 pages of content dedicated to penetration tests, few regular columns written by specialists
PenTest Extra (release date: 15th of each month) – 50 pages of strictly topical content dedicated each time to different hot topic
Mobile Pentesting (release date: 7th of each month) – 40 pages of content dedicated to latest mobile topics
Web App Pentesting (release date: 22nd of each month) – 40 pages of content dedicated to web application topics
Buy annual subscription and contact us at krzysztof.marczyk@software.com.pl. We will take care of everything for you!
Contact PenTest team! Please spread the word about PenTest magazine!
Sniffing an SSL Handshake using Wireshark -- Crypto Song Posted by cdupuis on Sunday, 15 January 2012 @ 13:02:16 EST (239 reads) TopicCryptography
My good friend Larry Greenblatt who is an instructor extraordinaire and a men of many talents has created a great song about SSL sniffing using Wireshark. Listen to it on UTube. See his note below:
I created a music video about Crypto using Wireshark to sniff a SSL handshake with Google. I got some good comments from some Sharkfest presenters and it looks like I am going to present this at Sharkfest 2012 in June!
OWASP Long Island Chapter Posted by cdupuis on Saturday, 14 January 2012 @ 11:41:34 EST (261 reads) TopicWeb Applications Security
The Open Web Application Security Project (OWASP) is a 501c3 not-for-profit worldwide charitable organization focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
All Long Island chapter meetings are free. Please water our calendar for up coming events.
For more info contact: Helen Gao (helen.gao@wasp.org)
Arachni V0.4 has been released Posted by cdupuis on Saturday, 07 January 2012 @ 09:04:52 EST (266 reads) TopicWeb Applications Security
Hi guys,
This is just to let you know that there's a new version of Arachni.
Arachni is a high-performance (Open Source) Web Application Security Scanner Framework written in Ruby.
This version includes lots of goodies, including: * A new light-weight RPC implementation (No more XMLRPC) * High Performance Grid (HPG) -- Combines the resources of multiple nodes for lightning-fast scans * Updated WebUI to provide access to HPG features and context-sensitive help * New plugins * ReScan — It uses the AFR report of a previous scan to extract the sitemap in order to avoid a redundant crawl. * BeepNotify — Beeps when the scan finishes. * LibNotify — Uses the libnotify library to send notifications for each discovered issue and a summary at the end of the scan. * EmailNotify — Sends a notification (and optionally a report) over SMTP at the end of the scan. * Manual verification — Flags issues that require manual verification as untrusted in order to reduce the signal-to-noise ratio. * Resolver — Resolves vulnerable hostnames to IP addresses. * Accuracy improvements and bugfixes for the XSS, SQL Injection and Path Traversal modules * New report formats (JSON, Marshal, YAML) * Cygwin package for Windows
Live Online CISSP Boot Camp at 1/2 the price of our Live Classroom Boot Camp Posted by cdupuis on Wednesday, 21 December 2011 @ 21:55:15 EST (333 reads) TopicTraining
WebApp Pentesting for charity Posted by cdupuis on Wednesday, 21 December 2011 @ 11:39:39 EST (361 reads) TopicHakin9
Anonymous writes "
WebAppPentesting Magazine - new December issue is out!
Why don't we start thinking of those who really need help? Please consider help to those who don't have warm home to spend Christmas in, who suffer hunger when our tables are full of delicious food, who sleep alone in the shelter, or who spend their holidays in hospital.
Download the Free Teaser Issue to check the content and read Free Article, just click here
What's more you can find inside is:
Web Application Security for Newbies part 1. By Herman Stevens
Web Session Management – reality is a nightmare! By Rishi Narang
A chance to ease automated Web Site testing. By Marek Zachara
Cyber Security War – ofensive vs defensive. By Jatin Jain
Web Application Security – Preservation and Hacking. By Priyanka Tomar
E-banking ghosts. By Sebastien Bischof and Jean-Marc Bost
Mike Brennan and Richard Stiennon “Cyber Styletto”
SUBSCRIBE NOW!
Christmas offer! Receive Ebook, coupon for Cyber Styletto for 99 cents, 6 months Subscription For Free!
If you buy PenTest annual subscription, you will receive 48 Issues of PenTest per year and get:
PenTest (release date: 1st of each month) – 50 pages of content dedicated to penetration tests, few regular columns written by specialists
PenTest Extra (release date: 15th of each month) – 50 pages of strictly topical content dedicated each time to different hot topic
Mobile Pentesting (release date: 7th of each month) – 40 pages of content dedicated to latest mobile topics
Web App Pentesting (release date: 22nd of each month) – 40 pages of content dedicated to web application topics
Sounds good? Isn't it?
1. FIRST FIVE subscribers will get a free e-book "Network your Computers and Devices" by Cyprian A. Rusen. Don't let the others take them from you!
Have you ever wondered about the book which not only can help you to step by step network you computer and devices, but also can be useful for your relatives? New Step by Step Network your computers and Devices book is best useful tutorial for whole your family.
PenTest Extra Physical Security Issue 4 of 2011 Posted by cdupuis on Thursday, 15 December 2011 @ 20:59:18 EST (445 reads) TopicHakin9
Anonymous writes "
New issue of PenTest Extra is out!
Guaranteed Access by Jon Derrenbacker Everyone has different ideas of what physical security is, what it encompasses, and how to exploit it. It can include a wide range of exploits, many being surprisingly simple. Regardless of method, going after physical security in a PenTest often proves one of the easiest ways to gain access to a network. Sometimes physical exploits are almost looked on as cheating, simply because some of them are so simple, so obvious, and yet completely unprotected.
Let’s Get Physical by Kent Blackwell Your boss calls you into his office to inform you a penetration test has been requested by one of your clients. Unlike the bi-annual vulnerability sweeps Company Inc. has previously requested, they have also asked for a physical security assessment as well. You’ve never preformed this kind of test before and by the time you’ve made it back to your desk your imagination is already running wild with scenarios that wouldn’t look out-of-place in a Mission Impossible movie.
The Process Explained from Start to Finish by Alex Horan If a security tester, for example, has only a couple of days to test and report on the security posture of a web application, the tester needs to ensure that manual efforts are only devoted to areas of the web application that deserve manual attention. It would be highly inefficient for the tester to spend a third of his or her time simply crawling the application and recording all of the unique URLs associated with the application.
Anatomy of Attack Detection, Without Data! by Rishi Narang There has been a constant evolution in the threat landscape and attack vectors. New attacks, malware, malicious packets traverse our network every now and then. The industry has deployed the measures on perimeter, host and virtually anywhere in between. We have IPS, AV, Firewalls and other protection, and detection tools but most of them look for patterns, or as the standards say, do a DPI (Deep Packet Inspection). But the bottleneck hits when these wares start morphing or a slight change in the code, enables the signature writers to add exorbitant amount of code in the product. The overhead on signature writers and pattern matchers is increasing exponentially.
Intelligent Video Surveillance by Theofanis Kontos Intelligent video comprises any solution where the video surveillance system automatically performs an analysis of the captured image. Hence, the central idea behind it is that observation and alarm detection do not burden the human personnel any more, but are assigned to computers.
Now What am I forgetting by Justin Rogosky The article below details the exploits of a diamond thief who didn’t use a weapon or threat of violence, he came in everyday as a client and became a trusted individual. Normally, engagements don’t allow you to build up the kind of relationship required for this level of access, but being friendly can get you a lot farther than most people realize.
IT Security Books In recent months on the market appeared a lot of new books in the field of IT Security. We want to introduce you three of them. “Web Application Security” and “Security Metrics” are a part of “Hacking Exposed” series, which has a good reputation and recognition. The last one, “Securing the Clics”, provides knowledge of network security.
Interview with Patrick Bedwell by Arao Patrick Bedwell has more than 14 years experience in the network security and network management industries. He is the vice president of product marketing at Fortinet and is responsible for executing the marketing strategy for Fortinet’s network security products. Prior to joining Fortinet, Patrick held product marketing and product management leadership positions at Arcot Systems, McAfee, SecurityFocus, Network ICE and Network General. Patrick earned an MBA with honors from Santa Clara University and a BA degree in English from the University of California, Berkeley.
Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.