Daily Dave

zeus plug-in

Tue, 22 May 2012 13:39:07 GMT

Posted by dan on May 22

Has anyone here analyzed the Leprechaun(sp?) plug-in for Zeus?

--dan

Tool of the day!

Mon, 21 May 2012 19:18:02 GMT

Posted by Dave Aitel on May 21

So every sub-genre of hacker has their own set of specialized knowledge.
And in the sub-genre that "sees a lot of mailspools" (which you could
label "Unix Hackers") you often have this problem where you have a lot
of email, and you want to quickly distill it down to "files that are
interesting". Of course, emails come in all shapes and sizes and are all
decoded differently and it's a bit annoying to figure out...

Howard Schmidt

Fri, 18 May 2012 14:03:20 GMT

Posted by Dave Aitel on May 18

"As for getting into the power grid, I can't see that that's realistic,"
Schmidt said. <http://www.wired.com/threatlevel/2010/03/schmidt-cyberwar/>

Likewise as that Threat Point article from the start of his time in the
White House points out:

"People have to recognize that when we close the door and go home, we
are just normal netizens like anyone else," Schmidt said. "I've been in
the internet...

Ten years.

Thu, 17 May 2012 14:34:41 GMT

Posted by Dave Aitel on May 17

Immunity is ten years old now - and like any ten year old, it is
interested mostly in shiny things that bleep and bloop. :>

But also like any ten year old we are growing and always hungry, and so
if you're interested in working in the new DC office or Miami Beach HQ,
please let me know. We only have one perk and that is this: We'll keep
you entirely focused on breaking into things in one way or another.

-dave

New INFILTRATE 2012 Movie is up! With surprise introduction by Halvar!

Mon, 14 May 2012 19:11:35 GMT

Posted by Dave Aitel on May 14

OH: "So....static analysis! Let's talk about it!" (Long pause follows.)

That's pretty much straight out of most parties I go to! Luckily, there
are a few people who can go into static analysis to great levels of
depth, and some of them give talks at INFILTRATE. :>

http://www.immunityinc.com/infiltratemovies/movies/JulienVanegue.mp4

-dave

Re: Mobile Phone Security Survey

Mon, 14 May 2012 14:10:29 GMT

Posted by Hamid on May 14

There were some issues regarding some optional questions that has been
marked as mandatory mistakenly. Thanks to quick feedbacks they are
fixed now.

Hamid

Mobile Phone Security Survey

Fri, 11 May 2012 18:15:54 GMT

Posted by Hamid on May 11

Hello DD!

Few weeks ago I had a writeup about (in)security trends in mobile phones
and now I've reached to a point that I need results of a survey to
validate and confirm some facts that are going to be covered in paper.

I would appreciate your help by participating in this survey, or be even
more awesome and spread it among your friends that are not security geeks!

Survey link:

http://goo.gl/pQO02

Thank you!
Hamid

With a real team, it's not about the numbers

Tue, 01 May 2012 14:15:35 GMT

Posted by Dave Aitel on May 01

I find articles like the recent one in Forbes
<http://www.forbes.com/sites/andygreenberg/2012/03/21/meet-the-hackers-who-sell-spies-the-tools-to-crack-your-pc-and-get-paid-six-figure-fees/>
quite funny in a way - and likewise talks about "rootite" and bug mining and so forth. Part of this is because
philosophically I know that teams who focus on the money tend to lose. Obviously you need a lot of money to get things
done in...

72 hours

Thu, 26 Apr 2012 21:24:46 GMT

Posted by Shari Bermudez on Apr 26

Just a reminder that there are only 72 business hours remaining before
registration closes for the WebHacking and Master training classes.
Sign up today. Call 786-220-0600 or email training () immunityinc com
The 20% discount offer for re-tweeting still stands.

http://immunityinc.com/education-currentschedule.shtml

Spooked at RSA 2012

Thu, 26 Apr 2012 14:22:23 GMT

Posted by Dave Aitel on Apr 26

So we put my RSA 2012 talk up, along with the comments from the viewers that RSA collected.

I 100% agree with every comment in the feedback form, which include such bon mots such as "You reek of pride". Frankly,
I am quite proud of what the offensive community has been able to do over the last ten years. And I was a bit hurried
during the actual talk (the one below is from my 6am-dry-run-in-hotel-room since they didn't record...

What's happening at SyScan'12 Singapore

Wed, 25 Apr 2012 14:46:39 GMT

Posted by Thomas Lim on Apr 25

Dear Dailydave readers

Do you know what's going to happen at SyScan'12 Singapore next week?

BEER, BEER, BEER, BEER, BEER, BEER, BEER, BEER....

13 AWESOME SPEAKERS:
a. Stefan Esser (i0n1c)
b. Chris Valasek (nudeaberdasher)
c. Tarjei Mandt (kernelpool)
d. Alex Ionescu
e. Edgar Barbosa (0pC0de)
f. Jon Oberheide
g. Brett Moore (antic0de)
h. James Burton (Jayji)
i. Seung Jin Lee (Beist)
j. Ryan MacArthur (Backpacker)
k. Loukas (snare)
l....

Save yourself 20% by tweeting

Mon, 23 Apr 2012 19:48:25 GMT

Posted by Shari Bermudez on Apr 23

Want to come to our June Master or WebHacking class but do not want to
pay full price? You can save yourself 20% in ~5 minutes by following
these simple steps:

(1) If you are not already doing so, follow us on Twitter @immunityinc
and/or @infiltratecon.

(2) ReTweet this tweet from today: "RT and receive 20% off June
training classes when you sign up before 4/27! ow.ly/asvSG e-mail
admin () immunityinc for info!"

(3) Email training...

TIME IS RUNNING OUT

Fri, 20 Apr 2012 14:29:42 GMT

Posted by Shari Bermudez on Apr 20

Time is running out to sign up for our June WebHacking and Master
Training Classes. If you are thinking about reserving your seat but
have not done so, the time to sign up is now.

_June 4-6, 2012 - WebHacking Class: _
Immunity's WebHacking course focuses on understanding common web
hacking techniques by having students exploit vulnerable systems.
Security professionals with some hands on web hacking experience will
get the most out of...

RIT!

Wed, 18 Apr 2012 16:34:49 GMT

Posted by Dave Aitel on Apr 18

Chris and Miguel are heading up to RIT today and will be around tomorrow
recruiting for Immunity. If you're at or near RIT and you want to hear
about the fun stuff they're working (which you can help work on!) then
send admin () immunityinc com <mailto:admin () immunityinc com> a quick email
and they'll vector you in! I hear there will be real wings served the
way only upstate NY knows how. I miss those wings, I have to say....

Re: CISPA == MAPP

Wed, 18 Apr 2012 16:28:57 GMT

Posted by Richard Bejtlich on Apr 18

Hi Allison,

I have a different view -- I'll try not to step on too many toes. :)

The problem is people are approaching this as a technical problem.
It's a trust problem.

The incentive is to not share. There is no incentive for a company to
tell anyone that they've been breached.

The bill in question doesn't say the government is entitled to your
information. They're trying to improve the incentives for companies
to...