Security Testing

Captive Audience: Using iptables and php as a home grown captive portal during penetration tests

Posted By Nick | March 31st, 2011

This, like all penetration testing methods or discussions should be used for educational\professional purposes only. The purpose of this post is to show an interesting client based attack method that can be used in penetration testing. Abusing networks or computers that you do not have permission to be messing with is not smart and can … Continue reading →

No Comments »

Tags: captive protal, dsniff, iptables, man-in-the-middle, Metasploit, MITM, msf, pen testing, penetration testing, php, traffic redirection
Filed In: Security Testing, Uncategorized

ProSo CEO’s Article Published as Featured Article in Quarterly IATAC Newsletter

Posted By News | November 10th, 2010

Chris Merritt, ProSo CEO, had his article published as the featured article in the fourth quarter IATAC Newsletter. The article, “Looking for a New FISMA,” outlines some of the problems with compliance paradigms – especially as implemented in the federal space. The article is available @ http://iac.dtic.mil/iatac/download/Vol13_No4.pdf. About the IATAC Newsletter This free quarterly publication … Continue reading →

No Comments »

Tags: Compliance, Consensus Audit Guidelines, FISMA, IATAC, Metrics
Filed In: Compliance, IATAC SME Program, IT Infrastructure Security, News & Events, Press Releases, Security Testing

Passed the Offensive Security OSCP Exam!

Posted By Nick | November 8th, 2010

It has been an intense journey since I signed up for the PWBv3 course from Offsec. But, now it is all worth it. I received notice that I passed and can now claim the title: Offensive Security Certified Professional (OSCP). I have taken many security courses, and have gotten a few certifications along the way, … Continue reading →

1 Comment »

Tags: Backtrack, certification, Metasploit, OSCP, pen test, penetration test, Security, security training
Filed In: Security Testing

Add a User With Root Privileges Non-Interactively

Posted By Nick | November 2nd, 2010

It has been quite a few weeks since my last blog post. I have been very busy with the PWB course from offensive security, as well as the daily grind to put food on the table. But, that’s no excuse! Hard core *nix enthusiasts will no doubt say “duh” to the knowledge I’m attempting to … Continue reading →

No Comments »

Tags: account creation, Backtrack, guid, Information Security, Linux, non interactive, OCSP, pen test, penetration testing, pw, PWB, Root, root user, second root user, Security, uid, useradd
Filed In: IT Infrastructure Security, Security Testing

Analyze Malware In The Time It Takes To Grab a Cup Of Coffee

Posted By Nick | August 12th, 2010

Malware analysis is not a skill that every IT security professional has. It comes with a heavy amount of programming experience, an understanding of assembly, computer memory, debuggers and decompilers. Malware analysis can take a lot of time and skill, and is usually not done by organizations’ security staff. The staff leaves it to AV … Continue reading →

1 Comment »

Tags: analysis, joebox.org, malware
Filed In: IT Infrastructure Security, Security Testing

The Perfect Storm – A Story of Snort False Positive Verification

Posted By Nick | August 10th, 2010

I recently had an opportunity to do some research into a large volume of Snort IDS rules that had begun to fire (to the tune of millions of alerts a day) for an organization. At first glance these alerts appeared to be false positives, but they smelled like a lazy application DDoS attempt from some … Continue reading →

No Comments »

Tags: False Positive, Snort
Filed In: IT Infrastructure Security, Security Testing

Metasploit Module Released for Latest Windows 0-day

Posted By Nick | July 21st, 2010

The folks over at the Metasploit Framework have released a working exploit module that takes advantage of the much talked about vulnerability in the Windows Shell. This module proves this vulnerability is not limited to being exploited via thumb drives or email attachments. Microsoft has no patch available as of yet, however they offer some ugly workarounds: … Continue reading →

1 Comment »

Tags: 2286198.mspx, CVE-2010-2568, http://www.microsoft.com/technet/security/advisory/2286198.mspx, Metasploit, msf
Filed In: IT Infrastructure Security, Security Testing

Security Testing:Fully Patched Machine Compromise with MITM+Iframe Injection

Posted By Nick | July 9th, 2010

The purpose of this post to provide an example of how to use the freely available Linux distribution Backtrack when conducting security testing; and to provide a specific example of an attack scenario with detailed instructions on the commands used with a description. This is by no means an all encompassing tutorial for using Backtrack … Continue reading →

No Comments »

Tags: Backtrack, ettercap, etterfilter, Metasploit, MITM, MSF3, pen test
Filed In: Security Testing

Corporate Blog