In the spirit of epic sequels, we are pleased to announce the follow-on Webcast to the highly successful Zen and The Art Of An Internal Penetration Testing Program. This webcast is the second part of a series presented by Paul Asadoorian in collaboration with Core Security Technologies. The presentation will be full of tips and […]
This webcast is Part I of a two part series I am doing in collaboration with Core Security Technologies. The presentation is full of tips, tricks, process, and practical knowledge about performing penetration testing within your own organization. Whether you are a third-party doing penetration tests or want to penetration test your internal network, this […]
This is going to be another neat webcast in collaboration with SANS and Core Security. Below is the description and sign-up information: “When beginning a security process at a consortium of non-profits, senior network security engineer, Paul Asadoorian of Security Weekly began looking for a penetration testing tool that did network, web application and social […]
All: I recently spoke for the SNENUG (Southern New England Network Users Group) and gave a short presentation on penetration testing. I introduced the basic concepts, steps, phases, and components of a penetration test. You can download the slides below: Introduction To Penetration Testing Enjoy!
UPDATE: Fixed the broken link. Sorry! Today, Larry is speaking on an Infoworld Webcast on improving vulnerability management with penetration testing with John Pescatore from Gartner (yes, he did declare IDS dead), and Allan Paller from SANS. The Webcast takes place at 2PM EST, and pre-registration is required. If you would like to join in, […]
I stumbled across this great “living” document that I’m calling an “Anatomy of a Pentest”. It is a great visual representation of all the steps one should think about when performing a pentest, with all of the most handy command line switches. The author is taking feedback from the community on the document, and is updating […]
“…new tunneling support allows you to make a real VPN using OpenSSH without the need for any additional software. This goes well beyond the TCP port forwarding that we have supported for years – each end of a ssh connection that uses the new tunnel support gets a tun(4) interface which can pass packets between […]
“The Cisco 7920 Wireless IP Phone provides Voice Over IP service via IEEE 802.11b Wi-Fi networks and has a form-factor similar to a cordless phone. This product contains two vulnerabilities: The first vulnerability is an SNMP service with fixed community strings that allow remote users to read, write, and erase the configuration of an affected […]
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.