Posted July 1st, 2010 by Jason
Having a solid incident response capability isn’t an accident. It’s the result of focused preparation, training and culture. Incidents come at unexpected times, frequently with little warning, and can have a severe impact on an organization. It’s during these times that inadequate planning, documentation and missing tools become painfully apparent. That high level incident response [...]
Tags: computer incident, incident response, preparation, security incident
Posted June 15th, 2010 by Jason
Last year I was able to speak at the Utah Open Source Conference on building a security toolkit with open source software. I just finished submitting my proposal for this year entitled “Metasploit: Free, Powerful, Flexible”. Being able to present at UTOSC 2009 was an absolute blast and I hope that my presentation is accepted [...]
Tags: Metasploit, Security Presentation, Utah Open Source Conference, UTOSC
Posted June 15th, 2010 by Jason
Just a quick note today. I finished working on a Metasploit module to create usernames the same way that the other two scripts in Reconnoiter does. However, this module is able to search Yahoo or Google and does not require separate scripts to do so. It also provides the option to use msfweb to get [...]
Tags: Metasploit module, reconnoiter project, username generation
Posted May 31st, 2010 by Jason
One of the most disheartening things about the Gulf of Mexico disaster is to watch BP, the government and other involved parties appear to make up their response as they go along. Aren’t oil companies required to plan for failures and how to recover from them? As it turns out yes, they are. Tonight I [...]
Tags: incident response, lessons learned, planning for disaster
Posted May 20th, 2010 by Jason
This is something that I’ve really been looking forward to announcing for a while now. I will be running a Mentor session for SANS starting on Sept 21 and running until November 23, 2010. We will be meeting once per week for two hours to cover course material, discuss what we’ve studied and do some [...]
Tags: incident handling, salt lake city, SANS, sec504, security training
