Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
For 802.11 and bluetooth security people alike. Latest trends, attack surface issues, and prevention. How wireless security is becoming the new vector to hacking corporate websites and applications. 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 35
5 years ago
MAdhaTTer-240
See I am not too expensive, I am worth much more then what I charge (not complaining). It is all about Return On Investment which is tricky to calculate for security. The risk, is the business, it's assets and it's clientèle. Knowing how much of those assets you were able to keep, due to security is the problem. When that can reliable be calculated we will be better off. My problem was knockin
Forum: News and Links
5 years ago
MAdhaTTer-240
THANKS that was the guy I was talking about. Good stuff there. Anyone else? I will add what I can..
Forum: News and Links
5 years ago
MAdhaTTer-240
Hello everyone, I am looking for some great security based sites. Not only forums and such like ckers.org, (no offense of course) but also sites that do internet based security analysis as well. There was one by a Russian man, I can not remember what it was called, he did a lot of work with current issues in security, storm botnet analysis, a bunch of crap from the RBN, malware analysis, etc.
Forum: News and Links
5 years ago
MAdhaTTer-240
Ladders is more for executives, but the 6 figure requirement makes is appliciable. I use Dice. Monster has been hacked, I think twice now... Hotjobs is an idea, I will have to look into Linkedin. Thanks.
Forum: Jobs
5 years ago
MAdhaTTer-240
;)
Forum: News and Links
5 years ago
MAdhaTTer-240
I am just wondering when will they make a pill for stupidity.. g1
Forum: Full Disclosure
5 years ago
MAdhaTTer-240
Thrill Funny you mention that, I had an epiphany the other day. As long as Visa and Mastercard are notifying companies that they have been breached, we dont have anything to worry about ;) Seriously tho, think about it, TJX, Hanafords, they had NO IDEA! Personally I blame sloppy crime rings like the RBN. Had they handled the credit card data better, say, merging that data with more PCI data
Forum: News and Links
5 years ago
MAdhaTTer-240
Hello, Where do you guys suggest publishing a resume for Info Sec positions? I hear good about Dice.com and the Ladders. Any other suggestions?
Forum: Jobs
6 years ago
MAdhaTTer-240
CrYpTiC_MauleR Wrote: ------------------------------------------------------- > Is there a way for me to find where in the > partition the bad sector is? If so can I make my > primary partition extend up to bad sector then > start my secondary partition after the bad sector? > That way that bad portion is not used for > anything. > > The Trucrypt forums yielded no
Forum: OMG Ponies
6 years ago
MAdhaTTer-240
Awesome AnDrEw Wrote: ------------------------------------------------------- > CrYpTiC_MauleR Wrote: > -------------------------------------------------- > ----- > > Yeah bluehost sucks. Since you are getting only > > 200 visitors per day you site is low traffic > which > > I would say is ideal for hosting yourself, > > provided you have broadband. Oth
Forum: OMG Ponies
6 years ago
MAdhaTTer-240
11. Re: ssh
I respect you opinion. I will of course stick to doiong it my way... but that is neither here.
Forum: Networking
6 years ago
MAdhaTTer-240
See you there ;)
Forum: News and Links
6 years ago
MAdhaTTer-240
13. Re: ssh
Ok, fact of the matter is people who are going to scan for SSHds to brute force are not going to scan 65535 ports on a host before moving on the the next one. They are just going to hit tcp/22. thats it. either you tell the world you are running an sshd and the version of it, and likely the OS as well or you don't. I do not want to seem confrontational, I am just engaging a discussion of differ
Forum: Networking
6 years ago
MAdhaTTer-240
14. Re: ssh
How is it, asia needs to be able to reach his sshd ? How about russia, or ukraine (no offense anyone)? Is he going there? Ir he a multi-namtional company? Even if he was a multinational company, it would have static IPs, the kind that can be savle added to remote firewalls that may say filter access to OpenVPN or SSHd.. SSH, VPN, RDP go not *have* to be generally available. The goal, is
Forum: Networking
6 years ago
MAdhaTTer-240
Well with out making this a huge thread... I hate to seem like I slip-flopped but I should have been more specific. I do believe in hosting, when A - you need something like an actual data center with redundant links and power blah blah blah,... B - you need multiple locations for redundancy (think DNS) but not otherwise, especially something delicate/security related like radius. I
Forum: Wireless Security
6 years ago
MAdhaTTer-240
"Boy, you took that quite personal as if you actually had something to do with it.." Actually, I should have said that to you. ;) You are the one that snapped back at me... not vice versa You act as if I spoke of anything that someone else did not already disclose. I mean I could see if maybe I disclosed something that was not public knowledge, but why would I do that, better yet h
Forum: News and Links
6 years ago
MAdhaTTer-240
I lack web application knowledge... But I don't care because I do not host** Web applications... ;) /me waves
Forum: XSS Info
6 years ago
MAdhaTTer-240
thrill Wrote: ------------------------------------------------------- > Do you really want to allow a bunch of people you > don't know the ability to see your security > related traffic? > > Hosted anything is a bad idea, mail, dns, > authentication, etc.. > > My recommendation would be to hire someone to come > in and set it up for you in-house. The initia
Forum: Wireless Security
6 years ago
MAdhaTTer-240
I was referring only to circumventing firewalls. Did I miss something other then exploiting poor firewall rules? What is the deal with the pentestmonkey shell thing? I am guessing it is this http://pentestmonkey.net/tools/php-findsock-shell/ Thanks for the tip :)
Forum: Networking
6 years ago
MAdhaTTer-240
Ouch, way to beat a dead horse man. Good thing I am a "young kid" and "still in college" that "shows up" "clueless morons" ;) He could make a nice living doing just that, assuming he does it correctly that is... What do you expect them to do? Promote him for saying "hey you should not use a blank password" come on. The fact that they had a bl
Forum: News and Links
6 years ago
MAdhaTTer-240
21. Re: ssh
I agree, I think this is a very simple solution and everyone is thinking way to hard.. nice little script tho id. This is what you get for running SSH on the default port on a public IP, and not firewall SSH off to a subnet or two... I will not help you more then I just did. Shame on you. Thats like having OpenVPN running and not firewalled off... /me whistles...
Forum: Networking
6 years ago
MAdhaTTer-240
Cool, I am guessing you are referring to the Briefings correct? What are the topics?
Forum: News and Links
6 years ago
MAdhaTTer-240
id Wrote: ------------------------------------------------------- > Depends on what kind of connection you have. If > you just are terminating a DSL line or Cable, > don't use those for routers, just modems. Then buy > a real firewall, or better yet, install openbsd on > an old box and use it to route and firewall. > > I don't have much experience with consumer level
Forum: Networking
6 years ago
MAdhaTTer-240
I believe you can, I have not tried tho. RTFM
Forum: Networking
6 years ago
MAdhaTTer-240
rsnake Wrote: ------------------------------------------------------- > If you trust .cz downloads: > http://www.15seconds.com/tool/pg000141.htm HA! so true... I think you left out .ru, .cn and .ua ;)
Forum: Networking
6 years ago
MAdhaTTer-240
So, as far as ways to get something more then html/asp from the webserver the only things I can think of are.... -- Attack the HTTP service, exploit it, and make the Web Server connect to you (what are the odds they have egress filtering on the firewall) -- Attack the firewall it self, old and unpatched ios, no reverse path filtering, what ever -- Lastely, well thats all that comes to mind.
Forum: Networking
6 years ago
MAdhaTTer-240
Thanks for the info.
Forum: News and Links
6 years ago
MAdhaTTer-240
Hello everyone. I know I am new to this site, but none the less it would be cool to meet some of you. Is anyone going to BlackHAT or DefCON, RSnake / id maybe?
Forum: News and Links
6 years ago
MAdhaTTer-240
if you want to learn/understand read the RFC. http://www.ietf.org/rfc/rfc0792.txt icmp-parameters, is also a good file to read http://www.iana.org/assignments/icmp-parameters Those "Linux Firewall" details are above id. ;)
Forum: Networking
6 years ago
MAdhaTTer-240
See, this is why we should team up. With your (assumed) understanding of Web Application, and my understanding of Network/Host Security we could make a powerful (successful) team... By the way, any statefull iptables will allow ICMP related errors. If my memory serves me, its the RELATED state that would let them pass... ie... iptables -P INPUT/FORWARD/OUTPUT DROP iptables -A INPUT -m state
Forum: Networking
Pages: 12Next
Current Page: 1 of 2