Cатсн²² (in)sесuяitу / ChrisJohnRiley

Because we're damned if we do, and we're damned if we don't!

Tag Archives: 2011

Top 5 posts of 2011

As the year begins a new I thought I’d take a look back at what people have been reading on blog.c22.cc in the last 12 months. Alongside hits straight to the main page (18,652), about me page (1,768 for some reason) and the usual heavy traffic on some older 2009/2010 posts (25,000+), the following new 2011 posts proved to be the most interesting.

Shmoocon 2011: TEAM JOCH vs. Android: The Ultimate Showdown –> 1,562 visits

SurveyMonkey: IP Spoofing –> 1,481 visits

Setting up your own SAP Netweaver test lab –> 1,421 visits

{BruCON LT} SSL Impersonation in 5 minutes or less! –> 1,375 visits

Shmoocon 2011: Printer to Pwnd –> 1,368 visits

It’s nice to see that people aren’t only coming to the blog for conference coverage, although Shmoocon coverage seems surprisingly popular… Let’s hope that the 2012 Shmoocon coverage proves just as interesting 😉

Advertisements

Closing 2010… and opening 2011

Nobody could claim 2010 was an uneventful year for me… It’s been a year of highs and lows, that’s kept me on my toes. It’s not all been a bed of roses, but what doesn’t kill us makes us stronger. If this is the worst thing that happens to me in my life, then I’m still better off then most!

I’ve shied away from doing a predictions type posts, because most are nothing but rubbish from start to end. Filled with buzzwords from the last few months, with no real substance, and very little point to them. Right now we don’t have the solutions… just a whole heap of problems. So how can anything change? Everything will stay just about the same… companies will fail to secure themselves and the bad guys will keep in winning. Sad but true!

Anyway, as I sit and look back on last year and what I want this year to be, I want 2011 to be a year of firsts for me, as 2010 was in many ways.

2010 (Ghost of Christmas past)

  • I began to finally look at Python scripting
    • About darned time! How did I ever cope without scripting things?
  • My first Python tool was released (UA-Tester)
    • Followed by a few simple Python PoC scripts…
  • I gave a lightning talk dressed as a pimp
    • A moment not to be forgotten easily 😉
  • Eurotrash Security Podcast reached it’s 1st Birthday and is going strong
  • The blog reached the 3 year mark
  • LIGATT
    • What more is there to say!

2011 (Going boldly….)

It’s hard to say what the industry will do in 2011… I couldn’t tell you what the latest buzz words will be by the time DefCon rolls around, but I can at least say what I intend to achieve… or at least try to achieve!

  • Have my first Metasploit module accepted into SVN
    • A number of SAP modules are already waiting for the final go!
  • Reply to the CFP for at least 1 conference
  • Give at least 2 more lightning/fire talks in various subjects
  • Put the LIGATT issue to bed
    • I’m tired of it, you’re tired of it… time to put a nail in that coffin
  • Teach developers about security through workshops
    • Already in the works with 1 company, and hopefully more to come!

Here’s to a near year and new challenge… If there’s no challenge anymore, then it’s time to move on!