Secure San Diego

Today was a good day for ToorCon, registration was easy, the talks where good overall.

The KeyNote
One thing about the keynote; if I have to hear about that dam DNS vulnerability again I think I am going to be sick. For those of you who have not heard it, the talk is not that bad. He does cover allot of impacts from this vulnerability which for those of you who have not patched your systems should scare you into patching it.

Loaded Dice: SSH Key Exchange & the OpenSSL PRNG Vuln – Ben Feinstein
This talk gave a good overview on the Debian SSH OpenSSL vulnerability and tools used in exploiting it.

Advanced SQL Injection – Joseph McCray
This by far was my favorite talk. The speaker was excellent and had a great way of interacting with the audience. The topic covered the basic forms of SQL Injection and ways to exploit them. There was discussion on ways to evade IP(d)S and different ways to get past errors in your SQL code placed in the URL.

One XSS To Rule The Enterprise – Grutz
This speak was very interesting and I thought that this use of XSS was very out of the box. Being able to grab credentials for internal domains, etc..

This Weekend I will be attending the San Diego ToorCon conf. I have never been able to attend this particular conf but have heard great reviews of past Conf. BTW this is thier 10th year.

Over the past few months we have noticed a rash of Fake Antivirus running around the internet. This stuff is typically called XP Antivirus 200(8)(9) etc..

Personally I have cleaned around 15 systems from this infection it is not easy and typically downloads other malware such as Keylogger’s, Browser toolbars, etc..

The writters are putting out new varients of this malware every couple of weeks, so what we have here is a virus that the real antivirus companies are having trouble keeping up with.

You can read more about the new variant here.

Could not let this go unnoticed,

LHC Rap