Traffic Talk 9 Posted

February 2nd, 2010 admin

I just noticed that my 9th edition of Traffic Talk , titled Testing Snort with Metasploit , was posted. From the article: Security and networking service providers are often asked whether their solutions are working as expected. Two years ago, I wrote How to test Snort , which concentrated on reasons for testing and ways to avoid doing poor testing. In this article, prompted by recent discussions among networking professionals, I show how to combine several tools in a scenario where I test Snort with Metasploit. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)


Originally posted on TAOSecurity

Related Videos from Youtube

  • AFCERT circa 2000...
    This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!
  • Black hat Is BACK! Black-hat affili...
    www.Black-Hat-is-Back.com Black hat Is BACK! Black-hat affiliate marketing for IMMEDIATE PROFITS! Finding the best products and selling the market what they're starving to buy without any guesswork! euser Reviews » Howie Schwartz and the Black Hat is Back System Nov 7, 2008 ... Find out what Howie says about dominating the dark side of Google. This may not be what you think it is. Find out why. Black Hat USA 2008 : Hands on Penetration Testing with Back ... This is an intensive, hardcore, hands on Security class by the creators of Backtrack especially designed for delivery in blackhat Trainings. ... Black Hat : Beware of Cylons at the Back Door - internetnews:The ... Black Hat : Beware of Cylons at the Back Door. By Sean Michael Kerner on February 22, 2008 10:09 AM. blackhat.jpg. Application back doors aren't just the ...Black Hat is Back? - sitepoint Forums Old Today, 15:41. halfasleeps. Actionscript Guru. halfasleeps's Avatar. Join Date: Feb 2006. Location: Altoona, PA. USA. Posts: 1820. Black Hat is Back? ...taosecurity: Bejtlich Teaching at Black Hat DC 2009 Training Black Hat was kind enough to invite me back to teach a new 2-day course at Black Hat DC 2009 Training on 16-17 February 2009 at the Hyatt Regency Crystal ...ieblog : Back from Black Hat After some very long days and nights, the IE delegation is back from Vegas . Some sessions I found especially interesting: Alex S & Scott Stender ...The Secret Of Black Hat Is Back - Black Hat Is Back Seo Secrets ... Dec <b>...</b>
  • Both Days of Air Traffic Control Au...
    Audio Courtesy liveatc.net Here's the original recordings of both days together. Day two starts at around 3:00. Clear space is edited out. Radio calls in between are not for emphasis. The scanner clips the audio between both tower channels as it's recorded so not every word exists on this audio recording. This is the reason for missing audio in some sentences. What was probably harmless is now being highlighted by the news media and now with FAA repercussions FAA Statement WASHINGTON, DC — The Federal Aviation Administration announced today that two employees at John F. Kennedy Airport Tower are on administrative leave following an incident last month when a child was permitted to talk with pilots on an air traffic control frequency. This lapse in judgment not only violated faas own policies, but common sense standards for professional conduct. These kinds of distractions are totally unacceptable, said FAA Administrator Randy Babbitt. We have an incredible team of professionals who safely control our nations skies every single day. This kind of behavior does not reflect the true caliber of our workforce. The two JFK Tower employees, a supervisor and an air traffic controller, are on administrative leave pending the outcome of an official FAA investigation into the incident which is already underway. In addition, all unofficial visits to FAA air traffic control operational areas, such as towers and radar rooms, will be suspended during the investigation. The FAA <b>...</b>
  • Child Air Traffic Controller JFK Ke...
    Audio Courtesy liveatc.net What was probably harmless fun is now being highlighted by the news media. Here's the original recording. bit.ly and now the FAA repercussions FAA Statement WASHINGTON, DC — The Federal Aviation Administration announced today that two employees at John F. Kennedy Airport Tower are on administrative leave following an incident last month when a child was permitted to talk with pilots on an air traffic control frequency. This lapse in judgment not only violated faas own policies, but common sense standards for professional conduct. These kinds of distractions are totally unacceptable, said FAA Administrator Randy Babbitt. We have an incredible team of professionals who safely control our nations skies every single day. This kind of behavior does not reflect the true caliber of our workforce. The two JFK Tower employees, a supervisor and an air traffic controller, are on administrative leave pending the outcome of an official FAA investigation into the incident which is already underway. In addition, all unofficial visits to FAA air traffic control operational areas, such as towers and radar rooms, will be suspended during the investigation. The FAA Administrator has directed a team to conduct a full-scale review of air traffic control policies and procedures related to facility visitors.
  • How to Talk Yourself Out of A Ticke...
    George4vlogging explaing the basic concepts in dealing with police at a routine traffic stop: 1. Acknowledge officer and be friendly 2. Do not admit guilt in any way 3. Engender Empathy 4. Keep it light 5. Fight the Ticket, Extend the payment as long as possible (If everyone fought these useless tickets, the gov't entity would view them as a losing investment
  • 谭谈交通Tan's Traffic Talk Show...
    When policeman meets fei zhu liu. English Subs. If you didn't understand some of the culture-specific references, please go to torisefromashes.blogspot.com for explanations.

More videos ...

 
  Related Posts
Traffic Talk 10 Posted
Traffic Talk 10 Posted
I just noticed that my tenth edition of Traffic Talk , titled Pcapr.net — where Web 2.0 meets network packet analysis , has been posted. From the article: Solution provider takeaway: Pcapr.net is a free packet collaboration site hosted by Mu Dynamics. Solution providers can participate in the community to exchange, analyze and gather traces... 
Review of Network Maintenance and Troubleshooting Guide, 2nd Ed Posted
Review of Network Maintenance and Troubleshooting Guide, 2nd Ed Posted
Amazon.com just posted my 5 star review of Network Maintenance and Troubleshooting Guide, 2nd Ed by Neal Allen. From the review : Good network troubleshooting books are rare. TCP/IP Analysis and Troubleshooting Toolkit by Kevin Burns (2003), Troubleshooting Campus Networks by Priscilla Oppenheimer and Joseph Bardwell (2002), and Network Analysis... 
Submit Questions for OWASP Podcast
Submit Questions for OWASP Podcast
Jim Manico invited me to speak on the OWASP Podcast . If you’d like me to try answering specific questions, please email them to podcast at owasp.org. When the show is posted I will let everyone know here. Thank you. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)  Read More →
Review of Professional Penetration Testing Posted
Review of Professional Penetration Testing Posted
Amazon.com just posted my three star review of Professional Penetration Testing by Thomas Wilhelm. From the review : I had fairly high hopes for Professional Penetration Testing (PPT). The book looks very well organized, and it is published in the new Syngress style that is a big improvement over previous years. Unfortunately, PPT should be called... 
Keeping FreeBSD Applications Up-to-Date in BSD Magazine
Keeping FreeBSD Applications Up-to-Date in BSD Magazine
The March 2010 BSD Magazine includes an article I wrote titled Keeping FreeBSD Applications Up-to-Date . It’s a sequel to my article in the January 2010 BSD Magazine titled Keeping FreeBSD Up-to-Date: OS Essentials . With these two articles published, they replace the versions I wrote in 2005. I wrote these articles to demonstrate the variety... 
  Related Tweets from Twitter
mosesrenegade (mosesrenegade)  : RT @oneraindrop: Build Visibility In - my notes on a great OWASP podcast w @taosecurity & @manicode http://bit.ly/cgJ9rG..
Updated : 2010-03-12T02:15:57Z   |  Reply  |  View Tweet
manicode (Jim Manico)  : RT @oneraindrop: Build Visibility In - my notes on a great OWASP podcast w @taosecurity & @manicode http://bit.ly/cgJ9rG..
Updated : 2010-03-12T01:34:41Z   |  Reply  |  View Tweet
webtonull (Erlend Oftedal)  : just finished listening to #OWASP Podcast #61 - an interview with @taosecurity (Richard Bejtlich) . Recommended..
Updated : 2010-03-11T20:56:12Z   |  Reply  |  View Tweet
secureslinger (secureslinger)  : TaoSecurity: Einstein 3 Coming to a Private Network Near You? http://ow.ly/1hako #computer #security #news http://ow.ly/1hakK..
Updated : 2010-03-11T18:24:43Z   |  Reply  |  View Tweet
secureslinger (secureslinger)  : TaoSecurity: Traffic Talk 10 Posted http://ow.ly/1haib #computer #security #news http://ow.ly/1haiC..
Updated : 2010-03-11T18:24:11Z   |  Reply  |  View Tweet
  Related News from Digg
Leave a comment | Trackback
No comments yet.

Spam Protection by WP-SpamFree

TOP