Reconnoiter Updated

I spent some time today and fixed some seriously messed up regular expressions in Reconnoiter.  Basically, Google made a bunch of changes to their search results and added AJAX all over the place.  To deal with this, I changed the submitted user agent to Lynx and then updated the regex accordingly.  Changes with regex were made to usernameGen.py and username_gen.rb … Read More

Latest Happenings and Upcoming Events

Things have been really busy lately. First off, my Mentor session for SANS Security 504 started on September 21st.  We are at the halfway point right now and leading this has been incredible.  It seems whenever I need to present or teach something I learn more than anyone else.  Plus teaching is just fun!  Particularly when it is about stuff … Read More

Preparing for Incident Response

Having a solid incident response capability isn’t an accident.  It’s the result of focused preparation, training and culture.  Incidents come at unexpected times, frequently with little warning, and can have a severe impact on an organization.  It’s during these times that inadequate planning, documentation and missing tools become painfully apparent.  That high level incident response plan that made the auditor … Read More

Submitted Speaking Proposal to the UTOS Conference 2010

Last year I was able to speak at the Utah Open Source Conference on building a security toolkit with open source software.  I just finished submitting my proposal for this year entitled “Metasploit: Free, Powerful, Flexible”.  Being able to present at UTOSC 2009 was an absolute blast and I hope that my presentation is accepted this year as well.  The … Read More

Reconnoiter Updated with Metasploit Module

Just a quick note today. I finished working on a Metasploit module to create usernames the same way that the other two scripts in Reconnoiter does. However, this module is able to search Yahoo or Google and does not require separate scripts to do so. It also provides the option to use msfweb to get a web interface to run … Read More

Learning from BP’s Response to the Gulf Disaster

One of the most disheartening things about the Gulf of Mexico disaster is to watch BP, the government and other involved parties appear to make up their response as they go along.  Aren’t oil companies required to plan for failures and how to recover from them?  As it turns out yes, they are.  Tonight I found the official “Regional Oil … Read More

NetApp Shell Commands

One of the guys I work with sent me a link to an article on Kings Pride and I decided to post them here.  Mostly, so I can find them again later when need them later. Any how, from Kings Pride here’s the details on how to invoke a Java based shell on a NetApp. Here’s the link to the … Read More

Facebook and Privacy

So Facebook has made some changes to privacy that I didn’t like much.  Thought I’d pass it on.  The new change is that if one of your friends uses a Facebook application (any application) and it requests personal information, Facebook will share that information to them without your knowledge.  So even if you don’t want your birthday published to anyone … Read More

The Importance of Backups and the SMB

Today we had a really bad thing that happened, but it ended up not mattering at all.  One of my clients was busy doing some work and accidentally deleted a directory with about 1 GB of data in it. I got a very worried email from them and if it could be restored.  Fortunately, we had recently implemented a new … Read More