[SecurityRatty] tag: tutorial

Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example

Tue, 30 Sep 2008 20:18:44 +0000

New Video: Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example
In a previous video I explained the basics of cryptographic hashes. Go watch "A Brief Intro To Cryptographic Hashes/MD5" before this video. In this tutorial, I’ll be giving an example of why weak hashes are bad. The example I'll be using is the CRC32 hash that Outlook uses to store a PST archive’s password with. The CRC32 algorithm as implemented by Microsoft Outlook is easy to generate hash collisions for, so even if you can’t find the original password you can find an alternate one that works just as well.

Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example

Tue, 30 Sep 2008 20:18:44 +0000

New Video: Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example
In a previous video I explained the basics of cryptographic hashes. Go watch "A Brief Intro To Cryptographic Hashes/MD5" before this video. In this tutorial, I'll be giving an example of why weak hashes are bad. The example I'll be using is the CRC32 hash that Outlook uses to store a PST archive's password with. The CRC32 algorithm as implemented by Microsoft Outlook is easy to generate hash collisions for, so even if you can't find the original password you can find an alternate one that works just as well.

Building Secure Web Applications Training in Minneapolis

Tue, 26 Aug 2008 17:43:59 +0000

I am very excited to announce that I am co-teaching a public software security class with Ken van Wyk, in Minneapolis, the class runs September 30 - October 2. Ken co-wrote a great book called Secure Coding, and has trained folks in software security all across the globe. I am really looking forward to doing this class with Ken, I wanted to make sure we got Ken up here before the weather got too cold! The summary is below, if you would like more info please let me know. More details to follow.

Building Secure Web Applications in Java/J2EE

Course Description

This course teaches the students how to develop secure applications from the web front end through the middle tier and data and integration layers for today’s complex internetworked environment. Students will receive a deep and thorough understanding of the most prevalent and dangerous security defects in today’s applications, and what to do about them. Additionally, they will learn practical and actionable guidelines on how to remediate against these common defects in Java/J2EE and Web Services frameworks and how to test for them in their own applications.

This class starts with a description of the security problems faced by today's software developer, as well as a detailed description of the Open Web Application Security Project’s (OWASP) “Top 10” security defects. These defects are studied in instructor-lead sessions as well as in hands-on lab exercises in which each student learns how to actually exploit the defects to “break into” a real web application. (The labs are performed in safe test environments.)

Remediation techniques and strategies are then studied for each defect. Practical guidelines on how to integrate secure development practices into the software development process are then presented and discussed. Bring the concepts and hands on learning together, the class uses a case study to show how to design and architect security services for a real world application.

Intended Audience

The ideal student for this tutorial is a hands-on web application developer or architect who is looking for a fundamental understanding of today's best practices in secure software development.

Cain RDP (Remote Desktop Protocol) Sniffing Log Parser

Sun, 03 Aug 2008 20:06:43 +0000

This is a quick script I wrote to easy the process of interpreting the logs that Cain makes when you do a man in the middle against the RDP protocol. I hope to use it in a video tutorial shortly. My GRE studies are still ongoing, so please excuse the lack of updates to this site. As a side note, the Louisville 2600 group now has it's own site, and the ISSA Kentuckiana chapter's site is back up.

Cain RDP (Remote Desktop Protocol) Sniffing Log Parser

Sun, 03 Aug 2008 20:06:43 +0000

Cain RDP (Remote Desktop Protocol) Sniffing Log Parser

Sun, 03 Aug 2008 20:06:43 +0000

See You in Vancouver at FIRST 2008

Fri, 20 Jun 2008 08:13:00 +0000

See you at FIRST2008 in Vancouver next week: my "Logs for Incident Response" tutorial - a whole day of logging fun! - will be presented there on Monday, June 23rd.

It is a great pity that I won't be able to spend more time at the conference as I have another one on Tuesday :-( - a "can't miss" kind since it is related to CEE.

Also, Honeynet members in attendance are planning a meet-up. Come find us there Monday night...

Finding Promiscuous Sniffers and ARP Poisoners on your Network with Ettercap

Mon, 19 May 2008 20:36:05 +0000

Most of you are familiar with using Ettercap for attacking systems, but what about using it to find attackers? This tutorial will cover using Ettercap to find people sniffing on your network. The plug-ins we will be using are search_promisc, arp_cop and scan_poisoner.

Installing Windows XP SP3? Read This First

Mon, 12 May 2008 20:00:00 +0000

Take your hands off that mouse. I know, you're ready to grab XP SP3. But slow down a sec and read my quick tutorial. It could save you some time and make your life with the new Service Pack less harrowing.

Positive Approach to Security Requests

Mon, 14 Apr 2008 07:00:00 +0000

I'm glad to see that Gartner have taken my advice from last September and in a new research note entitled "Tutorial on How to Move Beyond Security Awareness to Create a Risk-Conscious Culture" advocate an approach of

Replacing the word "No" with the phrase "Yes, and ..." is a simple change in style of communication that can make a big difference in how the risk manager's role and contribution are perceived.

It's an important point because taking a negative stance towards requests for new services will eventually result in a loss of credibility. Responsibility works in both directions - if you turn down a request then what impact is that having on the functioning of the business? Remember that business teams have deadlines to meet and your information security policies will not be uppermost in their thoughts as they strive to meet targets within budgets and earn the revenue that pays your salary. My previous blog makes the point that you need to also use intuition. Just how much risk is really involved? That doesn't mean you've now allowed the business carte blanche to trample over all the good practices that you've strived hard to put in place. It simply means that a reasoned approach where risks are explained, alternatives proposed, and quick action is taken will win you respect and keep the wheels of the business turning.