Professional Security Testers resources warehouse

The Academy.ca has new videos available

Hey everybody,

This week has been really busy both from a personal and business perspective. We spent a ton of time at SANS Toronto 2008 participating in panel discussions and giving SANS@Night talks.

Video production suffered due to our hectic schedules, but we still managed to get three videos uploaded for you.

We added a new category for SIM products as well.

We want to thank Q1 Labs and SecurityNexus for becoming the latest sponsors of The Academy and as always, don't forget to join The Academy LinkedIn Group at:

http://www.linkedin.com/e/gis/71823/29A0DF7FB943

New videos are posted to the 'Featured Videos' section of the website.

Find our new videos at: www.theacademy.ca
Firewalls
Configuring a Site-to-Site VPN Tunnel with Cisco PIX

Security Information Management (SIM) NEW CATEGORY!!!
Exporting Windows Event Logs Using the Adaptive Log Exporter

VA/Penetration Testing
Creating Favorites with Shavlik NetChk Protect

Thank you all for your on-going support and recommendations.

Peter Giannoulis
The Academy
www.theacademy.ca

This update has been brought to you by Check Point Software Technologies & OSSEC.

Hack In The Box (HITB) Malaysia -- Call for papers

Hello from Malaysia!

The Call for Papers (CFP) for the 6th Hack In The Box Security Conference in Malaysia (27th - 30th October 2008) is now open.

We've got some really cool stuff lined up this year including an open-hack competition for charity, a third track in the conference (hitb-labs), 4 keynote speakers + 30 international experts, the usual team based capture the flag competition, a new wireless (bluetooth, rfid, 802.11) village and lock picking village!

Summaries not exceeding 1250 words should be submitted (in plain text format) to cfp -at- hackinthebox.org for review and possible inclusion in the programme.

Submissions are due no later than 30th of June 2008

TOPICS

Topics of interest include, but are not limited to the following:

# 3G/4G Cellular Networks
# Apple / OS X security vulnerabilities
# SS7/Backbone telephony networks
# Analysis of network and security vulnerabilities
# Firewall technologies
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# Analysis of attacks against networks and machines
# File system security

PLEASE NOTE:

We do not accept product or vendor related pitches. If your talk involves an advertisement for a new product or service your company is offering, please do not submit.

Your submission should include:

# Name, title, address, email and phone/contact number
# Short biography, qualification, occupation, achievement and
affiliations (limit 250 words).
# Summary or abstract for your presentation (limit 1250 words)
# Technical requirements (video, internet, wireless, audio, etc.)

Each non-resident speaker will receive accommodation for 2 nights/3 days. For each non-resident speaker, HITB will cover travel expenses up to USD 1,000.00.

HITBSecConf2008 - Malaysia - Sponsorship Options

For an opportunity to position your company as a major supporter of this event, we have several sponsorship packages which offers an extensive variety of direct and exclusive mechanisms for pre-event exposure and
direct business generation during the event. If you are interested in further details regarding sponsorship of HITBSecConf2008 - Malaysia, please contact us.

===

On a related note, the keynote presentation videos from HITBSecConf2008 - Dubai is also now available for download from here:

Day 1 Keynote: http://materials.hitbsecconf.org/hitbsecconf2008dubai/videos/Keynote-1.mov
Day 2 Keynote: http://materials.hitbsecconf.org/hitbsecconf2008dubai/videos/Keynote-2.mov

See you guys in October!

The HITB Team.

Pangolin Sql Injection tool version 1.2.5.604 has been released

Hi, all: I’m glad to tell you that Pangolin, the wonderful Sql injection tool, has been updated to version 1.2.5.604. You can download it from here: http://www.nosec.org/web/pangolin
Pangolin is a GUI tool running on Windows to perform as more as possible pen-testing through SQL injection. This version now supports following databases and operations: * MSSQL : Server informations, Datas, CMD execute, Regedit, Write file, Download file, Read file, File Browser... * MYSQL : Server informations, Datas, Read file, Write file...
* ORACLE : Server informations, Datas, Accounts cracking...
* PGSQL : Server informations, Datas, Read file...
* DB2 : Server informations, Datas, ...
* INFORMIX : Server informations, Datas, ...
* SQLITE : Server informations, Datas, ...
* ACCESS : Server informations, Datas, ...
* SYBASE : Server informations, Datas, ...
etc. And supports: * HTTPS support
* Pre-Login
* Proxy
* Specify any HTTP headers(User-agent, Cookie, Referer and so on)
* Bypass firewall setting
* Auto-analyzing keyword
* Detailed check options
* Injection-points management
etc. What's the differents to the others? * Easy-of-use : What I try to do is making pen-tester more care about result, not the process. All you should do is clicking the buttons.
* Amazing Speed : so many people told you things about brute sql injection, is it really necessary? Forget char-by-char, we can row-by-row(of cource, not every injection-point can do this)?
* The exact check mothod : do you really think automated tools like AWVS,APPSCAN can find all injection-points? So, whatever, just check it out, and then enjoy your feeling ;)

Illegal Credit Card Skimming Device

As seen on Redbox.com
A tester has to remember that logical access is NOT always the easiest way to gather credit card numbers.

SUMMARY
Skimming involves the placement of an illegal device above the credit/debit card reader on a vending machine, ATM, or in this case a redbox. These devices are used to illegally read or store personal credit card information.

This article provides pictures of approved credit card readers and of skimmer devices. This is the first time I have seen a company take an active stance in educating their customers regarding this threat.

For the full article:
http://www.redbox.com/creditcardsecurity/

oCERT Open Source Computer Emergency Response Team

Robert McMillan, IDG News Service

http://news.yahoo.com/s/pcworld/20080506/tc_pcworld/145508&printer=1;_ylt=AoQ9ZrUeNtSO4_0KHFsk5VoRSLMF

Google has thrown its weight behind a fledgling security reporting group for the open-source community.

The search engine giant, long a proponent of open-source software, is now one of three sponsors of oCERT, the Open Source Computer Emergency Response Team.

Launched in late March, oCERT aims to be a clearinghouse for data on security vulnerabilities in open-source products, keeping open-source distributors on top of flaws and helping small software projects
ensure that users of their code are aware of any issues.

OCERT has published four advisories since its inception. In addition to Google, it is sponsored by Inverse Path and the Open Source Lab.

There are already many national CERT efforts, which coordinate countrywide responses to security threats, but oCERT hopes to meet the unique requirements of the open-source community, where software is often re-used but patches are not always circulated to everyone who needs them.

"It is my hope that this initiative will not only aid in remediating security issues in a timely fashion, but also provide a means for additional security contributions to the open source community," wrote Google's Will Drewry in a Monday post to the company's security blog. Visit the oCERT web site at: http://www.ocert.org/

EC-Council Offers Details and Insights on CEH v6

As seen on the Ethical Hacker Network:

SUMMARY

The latest version of the Certified Ethical Hacker (CEH) Courseware is due to be released and presented for the first time at Hacker Halted USA 2008 in June. Many small details of CEH Version 6 have been peppered on the Internet, as well as snippets of teaser copy on EC-Council’s own web site.

“With a total of 28 new and never seen before modules, covering the latest concepts, featuring more real life cases, and showcasing the latest hacking and security tools, the Certified Ethical Hacker (Version 6) will be the most advanced course ever.”

...an interview with EC-Council to see if we could get confirmation as well as clarification.

For the full article:
http://www.ethicalhacker.net/content/view/190/24/

Kiwicon 2008, Wellington, New Zealand

[--- www.kiwicon.org ---]

Holy sheepshit, internets! Blanket-Man[1] has wrung out his loin cloth and is ready to fly-tackle more heavy metal t-shirt wearing nerds with large egos and irc handles. Yes, it's time to open up your ~/haxing folder and get your talk together for Kiwicon 2k8! We've put out the black t-shirts, and deflated some satellite radomes, so where, as our more criminal yet fetchingly bikini clad cousins might say, the bloody hell are you?

The Kiwicon Crüe is proud to announce the initial call for presenters for the second installment of New Zealand's very own security conference: Kiwicon 2k8.

[About]

Kiwicon2k8 is intended to be an informal conference, drawing on the wider security community of Australia and New Zealand. It will be held in Wellington, New Zealand, on the weekend of the 27th and 28th of September, 2008.

Kiwicon's focus is on sharing information; ideas, code, and good whisky, in a rabelaisan carnival of security, nerdery, and *nix beards.

Last year, the inaugural Kiwicon ended up being kind of a big deal: highlights included tmasky's mighty Crackstation, the debut of Beau Butler as an "ethical hacker" making Microsoft "look like turkeys", and
of course the Kiwicon Hax0r Quiz, with the winner taking the grand prize of An Illustrated Guide to the Commoner Skin Diseases. Hope it came in handy for the post-con diagnosis phase, dude.

This year, Kiwicon's own Bogan is already making anti-virus vendors quake in their little signature-laden booties at Defcon's Race to Zero, and the cauldron of 0h-0h-0hday in Brett Moore's secret Insomnia lair is
bubbling over with pernicious brew. If you missed last Kiwicon (not "professional enough"? couldn't convince your boss it wasn't a hoax?) then find one of the 230+ people who were there and ask them if they're
just-not-gonna-bother this year.

[Venue]

Our hosts for the weekend will, once again, be Victoria University of Wellington. If you have any memory of last year's Kiwicon, then it'll look disturbingly familiar.

The campus has the advantage of being close to the center of the city and its' various amenities. This includes cheap accommodation, good coffee, and, more importantly, several good pubs serving good,
non-Australian, beer.

[Costs]

Kiwicon2k8 is a non-profit, non-commercial, non-corporate-funded event.

Attendance for the entire weekend will cost $50 for employed individuals (self-employed and salaried). There is a discounted rate of $30 for students and the unemployed. GST receipts can be issued upon request. If your management can't be convinced of the value of something that only costs $50, we're happy to issue you with some kind of personalised limited edition invitation in crayon, glitter pen, and macaroni
(spray-painted gold for that luxe look) for the low enterprise-only price of $500.

[Topics]

Suggested topics include but are not limited to:

- Crowd Control Techniques and Panic Modeling
- Information Warfare / Industrial Espionage
- Malware (Viruses, Spam, Phishing, Botnets)
- Cellular Networks (GSM,GPRS,CDMA,3G,4G)
- Application Security, Testing, Fuzzing
- Government Spy Networks / Surveillance
- Nanotechnology / Quantum Computing
- Access Control and Authentication
- Wireless / Bluetooth / Infrared
- Social Engineering / Trolling
- Breaking EAL Certified Kit
- Forensics / Antiforensics
- Banking / ATMs / Carding
- Exploitation Techniques
- Layer 1/2/3 Nastiness
- Reverse Engineering
- Phreaking / VoIP
- Virtualisation
- Web Security
- Lockpicking
- Biometrics
- Hypnosis
- Crypto
- Ohday
- 23

There is no pre-determined talk length but we ask that speakers limit their presentation to an hour, including some question time.

Since Kiwicon is a non-profit organisation, there is no funding available for travel and/or accomodation, even for IT rockstars. However, if your talk is accepted, a formal letter will be provided for employer leverage, and almost certainly, unless you're a complete jackoff, people will try and buy you beer.

To submit a presentation to Kiwicon2k8, send an email to cfp@kiwicon.org with the following information:

Name or Handle:
Country of Residence:
Employer (if applicable):
Presentation Title:
Presentation Length:
Presentation Synopsis:
Brief Bio:

[CFP Submissions]

Please submit your CFP by email to cfp@kiwicon.org, no later than 8:47pm NZST, Sunday 17th September 2008. There will be two rounds of selection, with the first half of the talks chosen in August, so submit early for a better chance of acceptance.

[Contacts & Further Information]

Email us: kiwicon@kiwicon.org
Check the site: http://www.kiwicon.org/
Drop by silc: silc.isig.org.nz:2706/kiwicon
Join the list: kiwicon-subscribe@lists.isig.org.nz

Greetz and thanks to all who helped make Kiwicon 2k7 the awesomeness it was, we'll see you *****ers again this year. Thick, meaty props to Pipes for stepping up and making 2k7 happen. We would miss you, but Sharrow's just as tall, and better looking. Sorry pal.

-- The Kiwicon Crüe, 2k8 - Bogan, Metlstorm & Sharrow. m/

[1] http://en.wikipedia.org/wiki/Ben_Hana

Netcat over SSL (Neat...)

Hello list,

I updated a tool I wrote a long time ago. This time, it
features:

- full SSL support (client and server with certificates)
- port proxying (TCP and UDP)
- SSL proxying
- IPv4/IPv6 proxying
- IPv4 and IPv6 support

To know more:
http://www.gomor.org/bin/view/GomorOrg/SslNetcat

fgdump (2.0.0) and pwdump (1.7.1) has been released

Folks,

The foofus.net team is pleased to announce updates to both fgdump (2.0.0) and pwdump (1.7.1), which incorporate a number of new features, the most significant of which is that both tools now support 64-bit targets.

We are also pleased to announce the creation of a mailing list for the purposes of tool support, bug reports, feature requests and new revision announcements. This mailing list currently covers fgdump, pwdump and medusa. Feel free to sign up at http://lists.foofus.net/listinfo.cgi/foofus-tools-foofus.net.

For all the details on the latest fgdump and pwdump releases, please visit their home pages:

http://www.foofus.net/fizzgig/fgdump

http://www.foofus.net/fizzgig/pwdump

As always, please contact me with any bug reports or feature requests.

--f fizzgig@foofus.net

Issue 16 of Insecure Magazine has been released

(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security topics.

Issue 16 has just been released. Download it from: http://www.insecuremag.com

The covered topics include:

- Security policy considerations for virtual worlds
- US political elections and cybercrime
- Using packet analysis for network troubleshooting
- The effectiveness of industry certifications
- Building a secure future: lessons learned from 2007's highest profile security events
- Advanced social engineering and human exploitation, part 2
- Interview with Nitesh Dhanjani, Senior Manager at Ernst & Young
- Is your data safe? Secure your web apps
- RSA Conference 2008
- Producing secure software with security enhanced software development processes
- Network event analysis with Net/FSE
- Security risks for mobile computing on public WLANs: hotspot registration
- Black Hat Europe 2008 Briefings & Training
- A Japanese perspective on Software Configuration Management
- Windows log forensics: did you cover your tracks?
- Traditional vs. non-tranditional database auditing
- Payment card data: know your defense options

Visit the (IN)SECURE Magazine web site at: http://www.insecuremag.com

Subscribe to our RSS feed at: http://feeds.feedburner.com/insecuremagazine

Thanks goes to the following companies for their support of (IN)SECURE magazine:

Qualys - http://www.qualys.com/pci_compliance/se-g
GFI - http://www.gfi.com/adentry.asp?adv=62&loc=41

Contact:

- For information on contributing to (IN)SECURE Magazine, please contact Chief Editor Mirko Zorz at editor( at )insecuremag.com
- For marketing inquiries do contact Marketing Director Berislav Kucan at marketing( at )insecuremag.com