Armitage is a front-end for Metasploit that allows team collaboration and exposes the advanced features of the framework. Raphael Mudge has made a six-part training series on Armitage and Metasploit for the ethicalhacker.net community. These demonstration-heavy lectures introduce the penetration testing process and walk you through each step. You'll learn how to break into hosts, carry out post-exploitation activities, develop more access from your initial foothold, and you'll do this in a team environment.
These lectures were initially created for the Austin, TX ISSA and OWASP half-day Metasploit training event in June. Elated after several tex-mex meals, Raphael recorded these lectures for us. If you're new to penetration testing and want to understand Metasploit and Armitage, these lectures are for you. Also, be sure to read Hacking Linux with Armitage from February 2011. Enjoy the training!
Read on...
Book Review: Practical Packet Analysis, Second Edition
Review by J. Oquendo AKA sil
"Practical Packet Analysis: Using Wireshark to Solve Real World Problems" is a decent book for readers who are relatively new to networking. It makes a great addition for someone in the one-to-three year range of their career. Whether this career is security-centric, network administration, or simply as a hobbyist, Chris Sanders made great work of keeping things simple yet informative for his readers. While this is a plus for the entry person, it is also its minus for the seasoned pro.
The beginning of the book gives an overview of the OSI layer, which I have found many in the IT industry skimp on. Whether you are in networking, systems, programming or the security arena, understanding the interconnections of protocols and how they operate with one another across the layers should be the first and foremost knowledge one should memorize. Because Chris took the time and brought this out at the forefront, it will be beneficial to the reader, which once again I feel would be a junior administrator. Let’s get into some more details after the break.
Read on...
Giveaway Corner
Win 3 Workshop Class Seats = $7500!
July 2011 Free Giveaway Sponsor - Sequrit
Wayne Burke, pen tester, instructor and CSO of Sequrit CSi along with the cooperation of EC-Council CAST, has put together the largest prize yet to be offered to EH-Net's top contributors for our Free Monthly Giveaways. Not only has he offered up a seat in Sequrit's 3-day security course, Digital Mobile Forensics Deep Dive, but also seats in 2 other 3-day courses being offered during the 4-day CAST Summit in Bethesda, MD from August 22 - 24.
Wayne Burke, pen tester, instructor and CSO of Sequrit CSi along with the cooperation of EC-Council CAST, has put together the largest prize yet to be offered to EH-Net's top contributors for our Free Monthly Giveaways. Not only has he offered up a seat in Sequrit's 3-day security course, Digital Mobile Forensics Deep Dive, but also seats in 2 other 3-day courses being offered during the 4-day CAST Summit in Bethesda, MD from August 22 - 24. "Digital Mobile Forensics Deep Dive: This three-day highly advanced and technical course provides students with the knowledge and real world hands-on practical skills for performing Mobile Forensic Investigations. The course is based on vendor neutral Digital Forensic principals, with focus on Apple OS, Google Android, RIM Blackberry and an array of other mobile devices and operating systems.I know with all of the action in the forums this year, we'll have no problem finding 3 worthy attendees to make thier way to Bethesda in August. So help spread the word of EH-Net, lend a hand in our forums, submit some articles... there are plenty of ways to make your mark. Let's get to it!!
Attendees get to choose from a suite of workshops which are highly technical and advanced, covering current and important security topics such as penetration testing (Joe McCray), mobile forensics (Wayne Burke), cryptography (Chuck Statton), network defense (Kevin Cardwell), and application security (Tim Pierson). The event concludes with a one-day security training seminar that will have a few mini-lectures, and allows for participants to actually learn, and not just listen or be rushed through a short presentation like how it’s like in many other events or conference."
June Winner! June 2011 Free Giveaway Winner - Hacking Dojo
If you've ever done martial arts and experienced learning in a dojo, then you're familiar with a teaching style that has succeeded for centuries. Thomas Wilhelm, author, instructor, speaker, professional penetration tester & all-around kewl guy, brings this concept to the security industry:
If you've ever done martial arts and experienced learning in a dojo, then you're familiar with a teaching style that has succeeded for centuries. Thomas Wilhelm, author, instructor, speaker, professional penetration tester & all-around kewl guy, brings this concept to the security industry: "The Hacking Dojo provides students with a long-term training and support system, with readily-available access to instructors. Students attend regularly-scheduled online meetings with their instructor, who teaches hacking concepts relative to students' skill level. When the students demonstrate proficiency in a set of skills, they are moved onto more difficult challenges and instruction."Up for grabs this month was a full year of training in the dojo with one of the industry's most respected names. But to win the prize, all someone had to do was become an EH-Net member & give back to the community in our discussion forums. About a year ago, a new member named MaXe joined us on EH-Net. And now he's the member with the most posts who has yet to win. So with that, and his amazing jedi mind tricks, he is the winner this month. Congrats.
Upcoming Events
Black Hat USA 2011 July 30 - August 4
DFRWS 2011 August 1 - 3
BSidesLasVegas 2011 August 3 - 4
DEF CON 19 August 4 - 7
DEFCON Kids August 6 - 7
WOOT '11 August 8
USENIX Security Symposium 2011 August 8 - 12
CRYPTO 2011 August 14 - 18
44Con Aug 30 - Sept 2
* Add your event to EH-Net's Global Calendar: events(at)ethicalhacker(.)net
DFRWS 2011 August 1 - 3
BSidesLasVegas 2011 August 3 - 4
DEF CON 19 August 4 - 7
DEFCON Kids August 6 - 7
WOOT '11 August 8
USENIX Security Symposium 2011 August 8 - 12
CRYPTO 2011 August 14 - 18
44Con Aug 30 - Sept 2
* Add your event to EH-Net's Global Calendar: events(at)ethicalhacker(.)net
Stay Tuned:
- Course Review: CSTA by 7Safe
- Oracle Web Hacking Part II by Chris Gates
- Course Review: eLearnSecurity Student
- Interviews with Courseware Developers and Instructors
- More Course & Book Reviews
No comments:
Post a Comment