Posted July 1st, 2010 by Jason
Having a solid incident response capability isn’t an accident. It’s the result of focused preparation, training and culture. Incidents come at unexpected times, frequently with little warning, and can have a severe impact on an organization. It’s during these times that inadequate planning, documentation and missing tools become painfully apparent. That high level incident response [...]
Tags: computer incident, incident response, preparation, security incident
Posted June 15th, 2010 by Jason
Last year I was able to speak at the Utah Open Source Conference on building a security toolkit with open source software. I just finished submitting my proposal for this year entitled “Metasploit: Free, Powerful, Flexible”. Being able to present at UTOSC 2009 was an absolute blast and I hope that my presentation is accepted [...]
Tags: Metasploit, Security Presentation, Utah Open Source Conference, UTOSC
Posted June 15th, 2010 by Jason
Just a quick note today. I finished working on a Metasploit module to create usernames the same way that the other two scripts in Reconnoiter does. However, this module is able to search Yahoo or Google and does not require separate scripts to do so. It also provides the option to use msfweb to get [...]
Tags: Metasploit module, reconnoiter project, username generation
Posted May 31st, 2010 by Jason
One of the most disheartening things about the Gulf of Mexico disaster is to watch BP, the government and other involved parties appear to make up their response as they go along. Aren’t oil companies required to plan for failures and how to recover from them? As it turns out yes, they are. Tonight I [...]
Tags: incident response, lessons learned, planning for disaster
Posted May 20th, 2010 by Jason
This is something that I’ve really been looking forward to announcing for a while now. I will be running a Mentor session for SANS starting on Sept 21 and running until November 23, 2010. We will be meeting once per week for two hours to cover course material, discuss what we’ve studied and do some [...]
Tags: incident handling, salt lake city, SANS, sec504, security training
Posted April 26th, 2010 by Jason
So Facebook has made some changes to privacy that I didn’t like much. Thought I’d pass it on. The new change is that if one of your friends uses a Facebook application (any application) and it requests personal information, Facebook will share that information to them without your knowledge. So even if you don’t want [...]
Tags: Facebook, Information Disclosure, Privacy
Posted February 14th, 2010 by Jason
It has been a busy couple of months, but my posts have been fairly quiet on the blog. Between attending the SANS Security 504 Incident Handling class, traveling for work, moving my family and the holidays things have been moving at a rapid pace. I’m going to be trying to comment more here, but for [...]
Tags: GCIH, Incident Handler, Metasploit, Reconnoiter, SANS
Posted October 20th, 2009 by Jason
When I first saw this fly by on Twitter (ironic) I thought it was Rsnake joking around. I followed his comment about it over to Vantage Credit Union‘s web site and saw that sure enough, their customers can do limited banking via Twitter. Before I go further, let me state this openly. I like and [...]
Tags: bad idea, banking online, twitter, web security
Posted October 13th, 2009 by Jason
The last week was really busy while I prepared to do my presentation at the Utah Open Source Conference. While I was engaged in this process I got a message from Larry Pesce of the Pauldotcom Podcast. He had some updates to Reconnoiter and wanted to shoot them over to me. He said that he [...]
Tags: pauldotcom episode 170, reconnoiter project, security tools, social media, username generation
Posted October 7th, 2009 by Jason
On Friday October 9th at 12:00 PM I will be speaking at the Utah Open Source Conference on how to put together a kit of security tools using open source software. I discuss a fictional company that we work at and some of the things that we can put in place to help secure the [...]
Tags: open source, security tools, utos 2009, utos presentation