Posts Tagged ‘sec101’

Security 101 at Refresh SD – Jan 13, Qualcomm campus

Thursday, January 1st, 2009

I thought that doing security101 at places like oggis may have been a tactical mistake because I want people to actually learn and benefit from some of this stuff, so having the discussion broken by the wait staff frequently simply murdered all the momentum the discussion had and the event turned into a hacking 101 lab where I just demonstrated attacks.

That being the case doing a security101 class in an actual classroom environment where I can have the attendees comfortable and perhaps even have a projector would likely be far far better. Phelan was gracious enough to let me usurp the january installment of refreshsd to give my security101 talk in a more meaningful and more formal environment. Refresh this month is on the 13th – see refreshsd.org for details, or see the meetup group.
Here is my proposed curriculum:

Basic networking
- How do computers talk?
- what is a packet?
- whats IN a packet?

clear text versus encryption (http, ftp, dns)
how websites pass information around
How to tell if the site you’re on is passing your information encrypted or not.
Some network voodoo – watching the stream
-driftnet
-dsniff
-watching dns queries
(the next three may or may not be permitted depending on qualcomms network configuration)
basic man in the middle example
faking ssl certs
changing dns

Hope to see you all there!

Tags: , , , , , , , , , , ,
Posted in insight, training | No Comments »

Post Mortem

Wednesday, November 26th, 2008

So security101 went fairly well – people didn’t show up until later, and I had spent too much time screwing aroung with ettercap and MITM attacks to have enough battery to complete the entirety of the talk with all the examples I had hoped for.

Some of the attendees ended up asking lots of questions so the ‘flow’ I had envisioned sort of went out the window – but I’d much rather have people interested and actively asking me questions: It shows interest. I’d rather have interest then have them all silent while I blather on and on.

We all ended up at my place afterwards and I was giving short demos on MITM dns tomfoolery, rewriting all queries for microsoft.com to linux.com, and doing SSL MITM attacks against hotmail using ettercap. Pretty fun stuff!

I’ll be holding the class again for anybody that missed it the first time and wants to have it again, but I haven’t chosen a date yet.

If you’re interested in a date, please leave a comment! I’d like to hold the class when more people can attend.

Tags: , , ,
Posted in insight, rants, review, speculation, training | No Comments »

Security 101 tonight!

Tuesday, November 25th, 2008

Tonight I’ll be hosting a free Security 101 session at Oggis in Mission Valley.

Here is a brief list of subjects I intend to touch on:

  • Networking and host/laptop/workstation configurations, and tools
  • Local Firewalls
  • Running Services
  • Apps to manage inbound and outbound traffic
  • Transmitting data: encrypted versus clear text
  • Differences between WPA and WEP
  • .. and some live examples!

Hope to see everyone there!

Tags: , , , ,
Posted in training | No Comments »