DNS security talk on March 16
I’m speaking on DNS security March 16 at the Ottawa Area Security Klatch (OASK). This will be an updated version of my famous “Seven Deadliest Sins” talk.
OASK is a new group and the apparent successor to the OttSec group. It’s supposed to be technical, informal and free. If you’re in town, check it out:
March 16 2010 5:00pm
Microsoft Canada Offices
100 Queen Street, 5th floor
Interesting links – March 2
Potentially interesting links for March 2:
- “Aurora” Response Recommendations (pdf) – Recommendations on how to defend against the “aurora” attacks used against Google and others. Internal DNS monitoring, VPN enrollments and (of course) better control of Windows endpoints are three key recommendations.
- No more and = 1 – SQL injection and XSS testing assistant. Interactive and WebScarab versions. Allows you to pick XSS and SQLi from menu and copy to clipboard.
- Sahi – Simple to use automated testing tool for web applications. Record and playback scripts. Runs on any modern browser which supports javascript.
- G-SEC SSL and Bluetooth Tools – Nice set of tools: “Harden SSL/TLS” – Change SSL/TLS settings on Windows, SSL Audit – scans servers for SSL support of all known cipher suites, BTCrack – Bruteforce Bluetooth PINs from captured keypairings.
The frugal CSO
Last month a gave a short presentation on free and low cost security tools to the Ottawa chapter of ISSA.
The slides are now available: The Frugal CSO: IT Security Tools for Tough Times (pdf).
This presentation was to raise awareness of the availability and quality of some of the leading free / open source and low cost security software.
Unlike the U.S. and European governments, the Canadian federal government has never officially blessed the use of open source. There are a ton of deployments, but they tend to be isolated, small and kept really quiet.
There are many outstanding open source and low cost security products out there, and there are few, if any, valid reasons to exclude them from consideration when evaluating products.
Interesting links – February 17
Potentially interesting links for February 17:
- Security Scoreboard – Security product directory and rating site. Vendor independent. Community driven.
- thrashd – Centralized rate-limiting services to one or many clients. Doesn’t block connections itself, but determines whether a connection should be blocked.
- Guerilla Security Leadership – A fun rant from Mike Rothman about the lack of security leadership and getting buy-in from executives
Interesting links – January 11
Potentially interesting links for January 11:
- wireplay – Facilitates fuzzing of unknown/custom protocols. Reads PCAP dumps of valid communication between the target server and its client application, then modify the original data to introduce possible faults in the server and replay it to the server.
- finddomains – Helps discover other domain names/web sites/virtual hosts hosted on a specific IP. Windows dot net only. Need Bing API key.
Older articles »