The presentations and the videos from the recent SOURCE Conference held in Boston are online. SOURCE seems to be finding the difficult balancing point between the technical and the business. I have not had time to go through many of the presentations yet, but there are many to check despite the somewhat detectable (and by now already common) presentation replay with some older stuff in the schedule as well.
For those running SNORT and/or having ability to implement custom IDS/IPS signatures (and having the attack packets available for analysis), I recommend going through at least Windows File Pseudonyms: Pwnage and Poetry [.pptx] by Dan Crowley and Reverse Engineering Broken Arrows [.pdf] by Adam Meyers. Both offer top quality concrete advise to the day-to-day of incident response.
I found How to Detect Penetration Testers [.pptx] by Ron Gula to be a spot on and "funny" wake up call type of thing to (our) incident response industry and Drinking from the Firehose: Ten Years of Vulnerabilities through the CVE Lens [.pptx] by Steve Christey to be a definitely due homage to the CVE project and very educating listen. Bullseye on Your Back - Life on the Adobe Product Incident Response Team [.pptx] by Wendy Poland and David Lenoe is also a must for anybody working in this industry IMO.
Dan Kaminsky published interesting looking stuff with The Fine Art of Hari Kari (.JS), And Other Approaches For The Strange Reality Of Web Defense [.pptx], but I haven´t found time to go through it yet. One to check also is Managed Code Rootkits – Hooking into Runtime Environments [.ppt] by Erez Metula and another one is Linux Kernel Exploitation - Earning Its Pwnie a Vuln at a Time [.pdf] by Jon Oberheide. Anonymity, Privacy, and Circumvention with Tor in the Real World [.pdf] by Jake Appelbaum seems interesting as well...check for ya self. Too many to mention, get it right from the SOURCE.
PS. For the Please SOURCE Publish These -list I have Neurosurgery With Meterpreter by Colin Ames, Rooting Out the Bad Actors by Alex Lanstein and Cracking the Foundation: Attacking WCF Web Services by Brian Holyfield among a few other things.
Subscribe to:
Posts (Atom)