Security News #0x0A: The NCCDC Edition
As I write this from the St. Anthony Hotel in San Antonio, the Towson University Cyber Defense team is downstairs at the National Collegiate Cyber Defense Competition with nine other of the best Cyber Defense teams in the nation. Good Luck!
- You might be interested in an older post by scriptjunkie that describes how anitvirus detects metasploit generated .exes.
- Here is a nice example of reverse engineering some PHP malware: Part 1 and Part 2.
- In class, we talk a lot about the importance of combining information from multiple sources. Here is someone performing a security analysis by looking through logs of
404errors on a web server.
- Are you interested in dictionary attacks against Windows systems?
- We mentioned mimikatz already; PaulDotCom has a nice piece on how to use it; see also the blog entry at cyberarms.
- Average Security Guy has a nice post on how to pwn a Splunk server if you can get access to the admin page (which is trivial if the free license is used).
- How about some more attacks on television sets?