SILICA demos at RSA

[Dave Aitel <dave () immunityinc com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Alex (the lead SILICA developer) is going to be at RSA on the 7th and
8th of February (Thursday and Friday). He'll have SILICA and a demo
setup for people who want to see it. Feel free to email him at
alex () immunityinc com. He'll also have a phone during the conference
you can use to coordinate meet-ups and that sort of thing.

We've put some new pictures of the device itself, the GUI, and some
sample runs here:
http://www.immunityinc.com/products-silica.shtml

I think one of the factors we've managed to keep throughout
development is an element of "fun". I dunno why I think it's so fun to
know that the person sitting next to me in Starbucks is running XP SP1
with their whole hard drive shared out and a username of
"fashiongirl", but it is. :>

One of the themes running through my head is "Broadness" lately. I've
noticed there are some people who specialize, like insects, in just
Windows overflows, and then there are the people who can do both
overflows and web attacks and if they can do overflows can do them
against MIPS/SPARC/PPC/etc. Or, you get the opposite: people who can
just do web attacks. There's enough web assessment work to go around,
but the last few web assessments I've seen had overflows in the
reports on random third party DLLs.  I dunno. Just a theme running
through my head. We can probably add "lock-picking" to the list since
things like SILICA or a PCI-board trojan require physical skills that
are even more rare. For the record, I'm the worst lock-picker ever.
Even on the baby-locks at defcon's lockpick booths I fail miserably.

- -dave
 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFrmsWB8JNm+PA+iURAsRqAJ9nci3fzOBfHno/cZ/R0Fs4EAKiFACg1ZP0
ZcAVyUoZntGmC6ZPWnojXn8=
=h5sa
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave