Cатсн²² (in)sесuяitу / ChrisJohnRiley

Because we're damned if we do, and we're damned if we don't!

Tag Archives: Article

User Enumeration with Burp Suite – HAKIN9 03/2009

The latest issue of HAKIN9 is due to hit the shelves soon. Alongside a number of other intresting articles you’ll find one on user enumeration with Burp Suite. As with any article, blog post or other content I write, feedback is always well received. So please take time to let me know what you think. After all we can only improve if we know where we’ve gone wrong.

Didier Stevens also has an article on PDF formats, which from my understanding is the start of a series on the topic of evil PDF files. If anybody knows evil PDF’s then it’s definetly Didier Stevens.

Hakin9 01/2009

hakin9_logoWell, sometime while I was in London it seems the new Hakin9 magazine hit the shelves. Somewhere in there is an article I wrote a few months back on security training. I hope it helps people that are looking at the options. Maybe I’ll revisit the topic in another 12 months to look at the OSCP and a few of the more specific SANS courses.

Overall I’m happy with the article, although somewhere between proof reading and print “C|EH” turned into “CIEH” it seems. Still, I hope that everything else is ok. Let me know your thoughts…. constructive criticism is always welcomed.

Article

2008 has been a good year so far. The list of good things is long, and the fight to achieve them has been hard. Still I can finally take a slight pause, look back and realise what I’ve achieved in the last 9 months. Don’t worry, I won’t bore you to death with a list, but I will take time to mention the latest “good thing”. This months issue of Linux Magazine (issue 96) plays host to my first published article. Although the article isn’t ground breaking, or anywhere near as earth shattering as I’d like, it does mark a new track for me in the years to come, as I’m sure I’ll be continuing on with write on and off as time permits. The article covers the install and basic configuration of  Snort (with backend my-sql database). I’m no expert on the inner workings of Snort, but I’ve been a user for some time and think it serves a purpose for users looking to setup a simple Snort sensor. If you’ve read the article please feel free to leave a comment, anything constructive will be well received.

I’ve learnt a lot from the experience, and through failures, can make sure that anything I write from now on will be better than my first attempt. After all, we’re all a little shaky on our feet the first time we try to walk. Got to learn to walk before you can run.

Next challenge, a presentation on “Information Disclosure” at the upcoming IT-SecX conference in St. Pölten, Austria. It’s a small one night event held near Vienna on the 31st October. Should be an interesting event, and hopefully the start of me overcoming my fear of presenting infront of crowds. What’s the worst that could happen ???

Don’t answer that…. no really… please don’t ;)

Recap…. move on

So as it’s been a while since I took my hiatus, I need to bring everybody up to speed on what’s been happening the past few months. As I’m getting old and my memory isn’t what it used to be, I’ll try and be brief and expand on certain topics moving forward.

SANS Amsterdam

After some discussions with work we agreed that attending the new SANS 560 “Penetration Testing and Ethical Hacking” class would be a good thing. Well, I convinced myself it would be good, and then.. well you get the clue. The course was held near to the airport in Amsterdam and was great fun on all levels. Although amongst the fun nights on the town, coffee shops and interesting shows, I learned a lot. The course was listed as one of the most technical offered by SANS and although it didn’t seem to technical at the time (thanks to the excellent course material by Ed Skoudis, and the few relaxed and informative presentation by John Strand), however as I begin to renew the topics for the exam, things aren’t as easy as they seemed at the course. That said, I’m sure I’ll do well in the exam, as I’m hoping to do work with SANS again in the future, possibly as a Mentor or as part of the work/learn program.

My first Article

Some people already know that I decided to take a stab at writing something for a magazine a few months back. The process of writing was a little harder than I thought, and I’m sure my girlfriend and parents are happy it’s over. I think I emailed my father at least 4 copies to proof read, most of them changing so quickly that he could never finish reading one before a new draft was ready. Still, things are looking up as Linux Pro Magazine in the US will be running it in the next edition (hopefully). It kind of ran over a little on the word count.. if you ask for a few pages at 800 words a page and get about 5,000 words, then it can be hard to squeeze in ;) Still look out for a Snort Intrusion Detection article in a shop near you soon…. for those already using Snort or other IDS’s, this was a basic setup article, so no new ground broken for the first article. Maybe next time.

Work, life and everything in-between

It’s nice to live in a country were you can go for a swim in a lake when it’s hot…. nothing nicer than just sitting by a lake and relaying (which I hope to do this weekend if the weather holds). The downside is, I’m English. We just tend to turn bright red, peel and then get pale again. Still, better than always being white eh ;) Work is challenging as usual. My German skills are (hopefully) getting a little better as time goes past, and learning new things is always a plus. Anyway, enough about work…. Gika (my girlfriend) has just finished University and it’s starting full-time at a web-content provider in the next few weeks. I’m very proud of her, as it’s been tough the last 3 years, dealing with University and me on-top. After all in our relationship I’ve lived in 3 different countries. If that’s not stressful then what is ;) I like where I’m at now and don’t think I’d be anywhere near this place in my life, career and mind without her.

So expect some technical content coming up soon… it’s been too long since I’ve posted a command-line into this blog. So I’ll leave you with this to keep you busy.

for /F %i IN (hostname.txt) DO @ping -n 1 -w 500 %i | find /I “reply”

for /L %i IN (1,1,255) DO @ping -n 1 -w 500 192.168.0.%i | find /I “reply”

They’re quick and dirty… but if you need a ping sweep quick sharp, it’s tell you what’s up and what’s not. The first will do all hosts listed in a file, single ICMP packet with a timeout of 500ms. The second does the same ping but using all IP addresses from 192.168.0.1~255. The FIND command filters the responses to only inform you of valid replies. For some much better examples you should checkout the Ed Skoudis presentations on command-line kung-fu. Check the SANS website.

Follow

Get every new post delivered to your Inbox.

Join 118 other followers