The Power of Convergence

A graduate student pointed me to a great article today on Physical and Information Security convergence… very interesting…. The Power of Convergence R www.micklerandassociates.com

Defending Against L0phtCrack

Hack the ScriptKiddie: Defending Windows2000 Against L0phtCrackhttp://www.sans.org/rr/whitepapers/win2k/213.php This week I kind of got into a kick: what if an admin could hack the hacker? What kind of specific tools can we use to detect and defeat maybe eighty-percent of the problem – that being the execution of _known_ scripts and tools like L0phtcrack. So I [...]

Load Up on Power Tools!

Load up on Tools and PowerToys! Hack your PocketPC Registry with Tweaks2k2! http://www.tweaks2k2.com/portal/staticpages/index.php?page=20050224182009983 What TweakUI did for the Windows platform, Tweak2K2 has done for the PocketPC. This product is available in both shareware and paid license. Naturally, XP’s PowerToy’s are an often-needed yet infrequently publicized set of tools available from Microsoft: http://www.microsoft.com/windowsxp/downloads/powertoys/xppowertoys.mspx Finally, a nice [...]

The Six Dumbest Ideas in Computer Security

This is great – a student passed this one to me.http://www.ranum.com/security/computer_security/editorials/dumb/ From the author: Let me introduce you to the six dumbest ideas in computer security. What are they? They’re the anti-good ideas. They’re the braindamage that makes your $100,000 ASIC-based turbo-stateful packet-mulching firewall transparent to hackers. Where do anti-good ideas come from? They come [...]

Google Hacking Windows!

HACK OF THE WEEK: Google Hacking! An interesting series on how to use Google to hack into public-facing Windows servers. From the author: “You can profile servers, find files containing sensitive information and detect “hidden” login pages, server log files and a whole lot more. In this tip, I will describe some neat Google tools [...]

US-CERT: Mobile Viruses Worsening

Vendors Claim Mobile Viruses Worsening: Both F-Secure and Trend Micro, mobile anti-virus product vendors, claim that attacks on mobile devices are becoming more serious. Virus that have been reported attack Symbian-based devices. During July, three new viruses and five new variants of existing viruses appeared. Source: http://www.securitypipeline.com/news/170102188.Rwww.micklerandassociates.com

The Evolving Brain

A student passed me this one: http://seattletimes.nwsource.com/html/nationworld/2002482196_brain09.html Rwww.micklerandassociates.com

Proctoring a CISSP Exam

I thought I’d share this – some may find this interesting – today (Saturday Sept 10, 2005), I proctored a CISSP exam in Portland, OR. Proctoring involves monitoring exam candidates both before and during the exam. Although I cannot go to heavily into details – proctors must sign a non disclosure – it is very [...]

Password Cache on WindowsXP Home

Had an interesting problem this week that I wanted to bring up. I created a standard printer share on a WindowsXP Professional box that was joined to a local domain. Another computer on the local subnet, running WindowsXP Home and not a member of the first box’s domain – as Home cannot join domain security [...]

Hacking Wireless… Keyboards?

From one of my graduate students this week: I just got finished reading some articles on wireless keyboards and mice. What do you think the probability of them being hacked are? A lot of things in security make me uneasy but I was not really sure on what’s up with the keyboards and mice. Here [...]