In my other rush to get up to speed for SANS 709 Developing Exploits for Penetration Testers and Security Researchers I’m looking for any material that will easy that learning curve. Steve Sims has just posted up two YouTube videos on brute-forcing Address Space Layout Randomization (ASLR) on Linux straight out of the 709 courseware. [...]
It’s as if one of my many random, vague and confused wishes to the Webi-verse has finally been answered. Mike Poor has created: www.packetstan.com for all things packet-like. It’s all about packets and crazy things people do to them. If that wasn’t enough the first article has been written by Judy Novak. Judy is a rock star of the analyst world [...]
Been a busy few months in the real world with work, life and everything else. Since passing the GSE written exam, I’ve been building up a lab, practical practice examples and a stock of reading reference materials. I’ll blab on about the books and what they are at some later point. An interesting aside, some of [...]
The last few weeks have been all about the packets, it seems. We’ve found and fixed a couple of wacky problems at work by looking at packet captures, Netmon 3.4 beta is out, I’ve devoured Laura Chappell’s new wireshark book, started playing with scapy, read the new Honeynet challenges and now I discover my 502 [...]
SANS is back in Canberra at the National Convention Centre. Four six day courses of security goodness: Security 401: SANS Security Essentials Bootcamp Style (GSEC) taught by Mark Hofman Security 503: Intrusion Detection In-Depth (GCIA) taught by Johannes Ullrich, Ph.D. Audit 507: Auditing Networks, Perimeters, and Systems (GSNA) taught by James Tarala [...]
