SecuraBit Episode 68: Teaching for handbags!

SecuraBit  Episode 68: Teaching for handbags!

Hosts:
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Anthony Gartner – @anthonygartner http://anthonygartner.com
Jason Mueller – @securabit_jay

Guests:
Kevin Johnson discusses SANS SEC 542 Web App Pen Testing, Base, etc

General topics:
New Apple Macbook Air.

Recent Security
Zynga collecting data about Facebook users.
Social engineering at a capture the flag event.
Pros and cons to using social networks.
Attacking your web applications for a more secure application.
Samurai WTF (Web Testing Framework) http://samurai.inguardians.com/
Laudanum: Injectable Functionality http://laudanum.inguardians.com/
Basic Analysis and Security Engine (BASE) project http://base.secureideas.net/

Upcoming events
#BSidesDFW November 6, 2010
#BSidesDE November 6, 2010
AppSec DC 2010 November 8-12, 2010
#BSidesOttawa November 12-13, 2010
#BSidesBerlin December 28-30, 2010
ShmooCon January 28-31, 2010

Links:

http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

We Dont Suck! (As Much Anymore)

Allow me to direct your attention over to Geordy Rostad’s blog for just a minute. His recent post over at notanon.com gives in my opinion, a very fair & accurate review of Episode 67 and SecuraBit as a whole. Geordy notes how we’ve evolved from our earlier “SecuraBeer”-type shows to deliver topics & guests that add value to the listening experience.

This progression is evident when listening to past shows in contrast to our latest releases. The podcast has grown & changed as we the hosts have grown and changed ourselves. When we released our first episode on May 3, 2008, we were fresh out of the Navy serving together at the same location. We thought we could do anything and say anything. This was evident in our content. Fast-forward about 2 and a half years and now you have a podcast hosted by still edgy, yet tempered hosts.

Going out on our own to Corporate America, civilian government, and government/military contracting has rounded us out. Nine-to-five life in a professional setting expanded our horizons as to what an audience expects and wants to hear. Who would have thought that anyone would want to listen to this podcast in an office environment?

All that being said, thank you, Geordy for the review.

Geordy Rostad’s site is http://www.notanon.com/ and his Twitter account is http://twitter.com/grostad

SecuraBit Episode 67: We’re all gonna get HAX!

SecuraBit  Episode 67:  We’re all gonna get HAX!
October 6, 2010Hosts:
Chris Gerling  – @chrisgerling
Christopher Mills – @thechrisam
Andrew Borel –  @andrew_secbit
Anthony GartnerGuest: Roger GrimesGeneral topics:

Authored eight books, and co-authored another 4
Chasing hackers for 23 years
SCADA issues
What the bad guys are doing? Black hat cloud backup?
Offline patch and reset days to recover from a issue.
Whitelisting may be a solution, that is just too hard to implement in many environments.
Needs full sign off from the organization
Different levels of identification

Syngress book of the month club for episode 68

Executives should have Macs because it makes it easier on the pen tester
Patching and warranties

Lenny Zeltser Facebook Social Captcha Authentication
http://blog.zeltser.com/post/1258010402/facebook-social-captcha-authentication

Upcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Phreaknic 10/15. http://www.phreaknic.info/pn14/
Bsides Delaware 11/6
Bsides Dallas-FortWorth 11/6

Links:
http://securabit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8

SecuraBit Episode 66: The third 6 would be unlucky!

SecuraBit  Episode 66:
September 22, 2010

Hosts:
Anthony Gartner – @anthonygartner http://anthonygartner.com
Chris Gerling – @chrisgerling
Christopher Mills – @thechrisam
Jason Mueller – @securabit_jay
Andrew Borel – @andrew_secbitGuests:
Aaron Barr (HB Gary Federal) @aaronbarr

We discuss HBGary with Aaron, and delve into some fun topics like malware analysis, forensics, and other technical skills.

General topics:
Media Sponsor for:
SecTor 2010 – http://www.sector.ca/
Security Training October 25.
Conference Sessions October 26 & 27, 2010.
Twitter XSS
http://status.twitter.com/post/1161435117/xss-attack-identified-and-patched

Robin Sage
Malware analysis
Behavior of malware in memory

FGET is good (free tool that remotely images NTFS volumes)
https://www.hbgary.com/community/shawnblog/fget-v10-goes-live/

Free tools from HB Gary
https://www.hbgary.com/community/free-tools/

Forensics
How flypaper plays into image grabbingUpcoming events
Hacker Halted http://www.hackerhalted.com/ Tim Is speaking October 14th
Louisivlle Infosec 10/7. http://www.louisvilleinfosec.com/
Atlanta B-Sides 10/8. http://www.securitybsides.com/BSidesAtlanta
HacKid – http://www.hackid.org/ 10/9-10/10
Phreaknic 10/15. http://www.phreaknic.info/pn14/

Links:

http://www.HBGary.com/
http://www.SecuraBit.com
Chat with us on IRC at irc.freenode.net #securabit
iTunes Podcast – http://itunes.apple.com/us/podcast/securabit/id280048405
iPhone App Now Available – http://itunes.apple.com/us/app/securabit-mobile/id382484512?mt=8