Tuesday, August 30, 2011

CSSLP class - Implementation III and Review

I missed the beginning of this class because I had no internet access at home; thanks to hurricane Irene. I was able to wirelessly tether one of my old laptops to my Droid X phone and get access to the class around 1945; so 45 minutes into it. It just so happens that last week the power button on my current laptop broke, so I can't get it powered on. Furthermore, I forgot my work laptop at the office. So, multiple problems all coalessing.

Extra from our instructor Mr. Franke, at the beginning of class:

Mantra Security Toolkit - Free & Open Source Browser-Based Security Framework
www.darknet.org.uk/2011/01/mantra-security-toolkit-free-open-source-browser-based-security-framework

Also, he talked about the latest article that was front and center on the home page: WebSurgery - Web Application Security Testing Suite
http://www.darknet.org.uk/2011/08/websurgery-web-application-security-testing-suite/

Started at slide 13

Code Protection
  • Code Access Security
    • declarritive vs. programmatic or imperative
  • Anti-Tampering
Code Obfuscation

see www.9rays.net/Category/55-spicesnet-obfuscator.aspx

Reverse Engineering

Code Signing
- delayed signing

talked a little about the Android marketplace and malicious code

Mobile Code
  • protection
    • digital shrink-wrap (code signing)
    • sandboxing
    • DIACAP/STIG: APP3700-APP3750
Build Environment









Posted by at No comments:

Friday, June 24, 2011

Hacker Group Posts Arizona Police Documents - WSJ.com

http://online.wsj.com/article/SB10001424052702303339904576404480859517792.html

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=_KpvzHXAasYp1m7GdMVH12vaYNJixynWaNg in your web browser.

Posted by at No comments:

Thursday, June 23, 2011

Hack Attack - TIME

http://www.time.com/time/business/article/0,8599,2079423,00.html

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=.cpsrHagaaYqtm2md6VEt2i6Y7Jhpyq2a7g in your web browser.

Posted by at No comments:

Wednesday, June 22, 2011

Hackers of the World Unite: Groups Declare Open ‘War’ on Governments and Fat Cats | Breaking news and opinion on The Blaze

 
Posted by at No comments:

Report: Government Computers Attacked or Probed Millions of Times a Day | Breaking news and opinion on The Blaze

 
Posted by at No comments:

Top-secret clearance checks falsified - Washington Times

http://www.washingtontimes.com/news/2011/jun/21/top-secret-clearance-checks-falsified/#.TgH8LcITv94;email

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=MLJTxEnIVs4V3lLOSM1731fSXNpezxXeVNA in your web browser.

Posted by at No comments:

NYT: F.B.I. seizes web servers, knocks sites offline - Technology & science - The New York Times - msnbc.com

http://www.msnbc.msn.com/id/43488005/ns/technology_and_science-the_new_york_times/t/fbi-seizes-web-servers-knocks-sites-offline/

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=Cc98o2aveak6uX2pZ6pUuHi1c71xqDq5e7c in your web browser.

Posted by at No comments:

My Way News - Pentagon gets cyberwar guidelines

http://apnews.myway.com/article/20110622/D9O0SERG0.html

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=YLEDxRnJBs9F3wLPGMwr3gfTDNsOzkXfBNE in your web browser.

Posted by at No comments:

Tuesday, June 21, 2011

BBC News - Teenager arrested on suspicion of hacking

http://www.bbc.co.uk/news/technology-13859868

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=eU_sI_Yv6SmqOe0p9yrEOOg14z3hKKo56zc in your web browser.

Posted by at No comments:

Friday, June 17, 2011

NSA allies with Internet carriers to thwart cyber attacks against defense firms - The Washington Post

http://www.washingtonpost.com/national/major-internet-service-providers-cooperating-with-nsa-on-monitoring-traffic/2011/06/07/AG2dukXH_story.html

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=bIUf6QXlGuNZ8x7jBOA38hv_EPcS4lnzGP0 in your web browser.

Posted by at No comments:

Thursday, June 16, 2011

China military paper urges steps against U.S. cyber war threat - Yahoo! News

http://ca.news.yahoo.com/china-military-paper-urges-steps-against-u-cyber-105425374.html

---
This message was sent by hyrumjs@gmail.com via http://addthis.com. Please note that AddThis does not verify email addresses.

Make sharing easier with the AddThis Toolbar: http://www.addthis.com/go/toolbar-em

To unsubscribe, visit http://www.addthis.com/privacy/email-opt-out?e=9hdpW3NXbFEvQWhRclJBQG1NZkVkUC9Bbk8 in your web browser.

Posted by at No comments:

Monday, June 13, 2011

Spanish police website hit by cyber attack: report - Yahoo! News

http://news.yahoo.com/s/nm/20110612/wr_nm/us_spain_cyberattack

Access to the website of Spain's national police force was blocked for over an hour late on Saturday in a reprisal attack by the hackers' group Anonymous, the newspaper El Mundo said on its website Sunday. ...
Posted by at No comments:

Tuesday, May 10, 2011

New School of Information Security

The Blog Inspired by The Book

http://newschoolsecurity.com/
http://www.amazon.com/New-School-Information-Security/dp/0321502787/ref=sr_1_1?ie=UTF8&qid=1305057650&sr=8-1
Posted by at No comments:

Thursday, February 24, 2011

Firesheep

http://codebutler.com/firesheep
http://en.wikipedia.org/wiki/Firesheep
http://www.myfoxhouston.com/dpp/news/scitech/101105-snooping-on-strangers-made-easy
http://www.thesolutionfirm.com/
Posted by at No comments:

links

http://www.northropgrumman.com/cybersecurity/
http://www.sans.org/top-cyber-security-risks/
Posted by at No comments:
Subscribe to: Posts (Atom)