[Full-disclosure] Recruiting Troopers - Call for Papers, March 19-20 2014
Once more, it will be Troopers time. This year was an extraordinary event. Everybody involved had so much fun and we had so many great talks... it seems quite difficult to do even better next year. Still, we'll try. You can be part of it. Again, Troopers - www.troopers.de - will be held in the beautiful city of Heidelberg/Germany (on 03/19 and 03/20 2014) and will feature two tracks, one on attack techniques and security research, the other focused on the defense side and management aspects of the infosec world. You might look at http://www.troopers.de/wp-content/uploads/2011/04/TR11_Enno_Rey_Keynote_Day01.pdf to get an idea of the spirit of the event. This call for papers addresses security researchers interested in sharing their work with other researchers and a high level audience (composed of about 60% people from industry, 20% from academia and another 20% from [research] community). We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills, tools or experience. Speaker Privileges == We will cover the flight costs (limited to EUR 750 for speakers from Europe and US$ 1800 for speakers from other continents) and three nights of accomodation, plus some evening fun and other amenities. To get an idea of our speaker treatment see http://www.elladodelmal.com/2010/03/como-una-rockn-roll-star.html ;-) Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Embedded Devices Security in a Mobile World Virtualization Cloud Stuff Industrial Networking Security in Telco Environments Secure Coding Advances in the Software Security Space Feasible Risk Assessment Approaches IPv6 Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. CFP submissions [to c...@troopers.de or/and simply reply to this mail] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handle, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 55 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 14 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers.de, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for submission: 31 Dec 2013. Final notification: 01 Feb 2014. Presentation slides due: 01 Mar 2014. The conference: 19-20 Mar 2014. == thanks, Enno -- Enno Rey ERNW GmbH - Carl-Bosch-Str. 4 - 69115 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey Troopers 2013 Videos online: http://www.youtube.com/user/TROOPERScon?feature=watch === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Recruiting Troopers - Call for Papers, March 13-14 2013
Once more, it will be Troopers time. This year was an extraordinary event. Everybody involved had so much fun (in the end, the term best security con. ever got a bit overstressed ;-) and we had so many great talks... it seems quite difficult to do even better next year. Still, we'll try. You can be part of it. Again, Troopers - www.troopers.de - will be held in the beautiful city of Heidelberg/Germany (on 03/13 and 03/14 2013) and will feature two tracks, one on attack techniques and security research, the other focused on the defense side and management aspects of the infosec world. You might look at http://www.troopers.de/wp-content/uploads/2011/04/TR11_Enno_Rey_Keynote_Day01.pdf to get an idea of the spirit of the event. This call for papers addresses security researchers interested in sharing their work with other researchers and a high level audience (composed of about 60% people from industry, 20% from academia and another 20% from [research] community). We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills, tools or experience. Speaker Privileges == We will cover the flight costs (limited to EUR 750 for speakers from Europe and US$ 1800 for speakers from other continents) and three nights of accomodation, plus some evening fun and other amenities. To get an idea of our speaker treatment see http://www.elladodelmal.com/2010/03/como-una-rockn-roll-star.html ;-) Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Security in a Mobile World Virtualization Cloud Stuff Embedded Devices Industrial Networking Security in Telco Environments Secure Coding Advances in the Software Security Space Feasible Risk Assessment Approaches Digital Certificates in 2013 IPv6 Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. CFP submissions [to c...@troopers.de or/and simply reply to this mail] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handle, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 55 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 13 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers.de, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 15 Jan 2013, Final Notification: 01 Feb 2013, Presentation slides due: 01 Mar 2013 The conference: 13-14 Mar 2013. == thanks, Enno -- Enno Rey ERNW GmbH - Carl-Bosch-Str. 4 - 69115 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] VMDK Has Left the Building . Some Nasty Attacks Against VMware vSphere 5 Based Cloud Infrastructures
List, some of you might find this interesting: http://www.insinuator.net/2012/05/vmdk-has-left-the-building/ have a good one Enno -- Enno Rey ERNW GmbH - Carl-Bosch-Str. 4 - 69115 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Recruiting Troopers - Call for Papers, March 21-22 2012
Once more, it will be Troopers time. This year was an extraordinary event. Everybody involved had so much fun (in the end, the term best security con. ever got a bit overstressed ;-) and we had so many great talks... it seems quite difficult to do even better next year. Still, we'll try. You can be part of it. Again, Troopers - www.troopers.de - will be held in the beautiful city of Heidelberg/Germany (on 03/21 and 03/22 2012) and will feature two tracks, one on attack techniques and security research, the other focused on the defense side and management aspects of the infosec world. You might look at http://www.troopers.de/wp-content/uploads/2011/04/TR11_Enno_Rey_Keynote_Day01.pdf to get an idea of the spirit of the event. This call for papers addresses security researchers interested in sharing their work with other researchers and a high level audience (composed of about 75% people from industry and 25% from academia). We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills, tools or experience. Speaker Privileges == We will cover the flight costs (limited to EUR 750 for speakers from Europe and US$ 1800 for speakers from other continents) and three nights of accomodation, plus some evening fun and other amenities. To get an idea of our speaker treatment see http://www.elladodelmal.com/2010/03/como-una-rockn-roll-star.html ;-) Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Security in a Mobile World Virtualization Cloud Stuff Embedded Devices Industrial Networking Security in Telco Environments Secure Coding Advances in the Software Security Space Feasible Risk Assessment Approaches Digital Certificates in 2012 Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. CFP submissions [to c...@troopers.de] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handle, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 55 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 12 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers.de, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 15 Dec 2011, Final Notification: 5 Jan 2012, Presentation slides due: 10 Mar 2012 The conference: 21-22 Mar 2012 == thanks, Enno -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Recruiting Troopers - Call for Papers, March 21-22 2012
Once more, it will be Troopers time. This year was an extraordinary event. Everybody involved had so much fun (in the end, the term best security con. ever got a bit overstressed ;-) and we had so many great talks... it seems a bit difficult to do even better next year. Still, we'll try. You can be part of it. Again, Troopers - www.troopers.de - will be held in the beautiful city of Heidelberg/Germany (on 03/21 and 03/22 2012) and will feature two tracks, one on attack techniques and security research, the other focused on the defense side and management aspects of the infosec world. This call for papers addresses security researchers interested in sharing their work with other researchers and a high level audience (composed of about 75% people from industry and 25% from academia). We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills, tools or experience. Speaker Privileges == We will cover the flight costs (limited to EUR 750 for speakers from Europe and US$ 1800 for speakers from other continents) and three nights of accomodation, plus some evening fun and other amenities. To get an idea of our speaker treatment see http://www.elladodelmal.com/2010/03/como-una-rockn-roll-star.html ;-) Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Security in a Mobile World Virtualization Cloud Stuff Embedded Devices Industrial Networking Security in Telco Environments Secure Coding Advances in the Software Security Space Feasible Risk Assessment Approaches Digital Certificates in 2012 Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. CFP submissions [to c...@troopers.de] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handle, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 55 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 11 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers.de, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 5 Dec 2011, Final Notification: 5 Jan 2012, Presentation slides due: 10 Mar 2012 The conference: 21-22 Mar 2012 == thanks, Enno -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Bypassing Cisco's ICMPv6 Router Advertisement Guard feature
Hi, some Wireshark excerpts on the attack Marc describes below can be found here: http://www.insinuator.net/2011/05/yet-another-update-on-ipv6-security-some-notes-from-the-ipv6-kongress-in-frankfurt/ thanks Enno On Mon, May 23, 2011 at 10:49:05AM +0200, Marc Heuse wrote: To bypass the Router Advertisement Guarding feature in the (very few) Cisco switches (and images) that support it: Attack: === Make the evil Router Advertisement fragmented and put the ICMPv6 into the second fragment, eg. by putting a very large Destination extension header before the ICMPv6 part. So the packets look like: Fragment 1: IPv6 Header Fragmentation Header Destination Header (~1400 bytes) Fragment 2: IPv6 Header Fragmentation Header Destination Header (continued with some bytes) ICMPv6 with RA Workaround: === To prevent this attack, put the following IPv6 ACL on all ports: deny ip any any undetermined-transport This will drop all packets where the switch is not able to identify the IPv6 transport type like in this attack. Note that this might drop some unusual valid traffic too. Workaround Bypass: == Craft the packets in a way so that the first fragment has an ICMPv6 echo request and the second fragment overwrites the first fragment with the ICMPv6 router advertisement. Fragment 1: IPv6 Header Fragmentation Header Destination Header (8 bytes) ICMPv6 with Echo Request Fragment 2: IPv6 Header Fragmentation Header with offset == 1 (equals position of 8th byte == start of Echo Request in first fragment) ICMPv6 with RA Note that the handling of overlapping fragments differs between platforms, some take the first fragment received, others the latest, so send the packets accordingly to your target. Hackers win again. Sorry Cisco. Have fun with IPv6! Greets, Marc P.S. Cisco is informed, they accept the risk ... P.P.S. thc-ipv6 v1.6 was released 10 days ago :-) -- Marc Heuse www.mh-sec.de Ust.-Ident.-Nr.: DE244222388 PGP: FEDD 5B50 C087 F8DF 5CB9 876F 7FDD E533 BF4F 891A ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey === Blog: www.insinuator.net || Conference: www.troopers.de === ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Recruiting Troopers - Call for Papers, March 30-31 2011
Once more, it will be Troopers time. This year was an extraordinary event. Everybody involved had so much fun (in the end, the term legend got a bit overstressed ;-) and we had so many great talks... it seems a bit difficult to do even better next year. Still, we'll try. You can be part of it. Again, Troopers will be held in the beautiful city of Heidelberg/Germany (on 03/30 and 03/31 2011) and will feature two tracks, one on attack techniques and security research, the other focused on the defense side and management aspects of the infosec world. [yes, Chris, you're right with your statement made here: http://www.rationalsurvivability.com/blog/?p=2749] This call for papers addresses security researchers interested in sharing their work with other researchers and a high level audience (composed of about 75% people from industry and 25% from academia). We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills, tools or experience. Speaker Privileges == We will cover the flight costs (limited to EUR 500 for speakers from Europe and US$ 1500 for speakers from other continents) and three nights of accomodation, plus some evening fun and other amenities. To get an idea of our speaker treatment see http://www.elladodelmal.com/2010/03/como-una-rockn-roll-star.html ;-) Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Security in a Mobile World Virtualization Stuff Embedded Devices Industrial Networking Security in Telco Environments Secure Coding Advances in the Software Security Space Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. If you have to offer another Web 2.0 cross browser unicode overflow talk you may submit it. However chances will be bigger if you have some more innovative stuff to talk about... CFP submissions [to c...@troopers.de] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handle, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 55 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 11 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers.de, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 20 Dec 2010, Final Notification: 5 Jan 2011, Presentation slides due: 15 Mar 2011 The conference: 30-31 Mar 2011 == thanks, Enno -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 174 3082474 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Mannheim: HRB 337135 Geschaeftsfuehrer: Enno Rey Blog: www.insinuator.net ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Troopers 09 Security Conference, Call for Papers
We'll do it again ;-) Last year _everybody_ involved in the event (speakers and attendees) enjoyed themselves and could significantly gain knowledge (and/or network with other researchers). There were keynotes by Dan Bernstein and Chris Hoff, a number of great talks ... and we had a fabulous speakers dinner in a medieval place in Munich. For anybody interested in the inaugural event see www.troopers08.org. This year's Troopers edition will be held in Munich again (on 04/22 and 04/23) and will only be one track, as we cooperate with another industry style event (mainly to avoid the heavy workload of organizing a con which keeps us away from the technical stuff we prefer to do in our lives ;-) Our call for papers addresses security researchers interested in sharing their knowledge with other researchers and a high level audience. We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills. Speaker Privileges == We will cover the flight costs (limited to EUR 500 for speakers from Europe and US$ 1500 for speakers from other continents) and two nights of accomodation. Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Virtualization Stuff Embedded Devices Industrial Networking Security in Carrier Environments Secure Coding Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. If you have to offer another Web 2.0 cross browser unicode overflow talk you may submit it. However chances will be bigger if you have some more innovative stuff to talk about... CFP submissions [to e...@ernw.de] must include the following information: 1) Brief biography including list of publications and papers published previously. 2) Proposed presentation title synopsis/description. 3) Contact Information (full name, alias, handler, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 4) Employment and/or affiliations information. 5) Why is your material different or innovative or significant? Please note that all speakers will be allocated 45 minutes of presentation time + 5 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 09 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers09.org, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 25 Feb 2009, Final Notification: 1 Mar 2009, Presentation slides due: 1 Apr 2009 The conference: 22-23 April 2009 == thanks, Enno -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Troopers08 Security Conference, April 23/24 (Munich/Germany)
Troopers08 Presentations Keynote on Invulnerable Software - Dan Bernstein KIDS - Kernel Intrusion Detection System - Rodrigo Branco State of Security - Andrew Cushman, Microsoft Release of the next revision of the free Exploit-Me series of application penetration testing tools - Nish Bhalla, Security Compass Side Channel Analysis - Job de Haas, Riscure Hackertools according to German law (? 202c StGB) - Horst Speichert, Lawyer Hardening Oracle in Corporate Environments - Alexander Kornbrust, Red-Database-Security Virtualization: There is no spoon - Michael Kemp Straight Talk about Cryptography - Jon Callas, PGP Evilgrade: You have pending upgrades - Francisco Amato Self defending networks - hype or essential need for international organisations? - Rolf Strehle, VOITH AG Keynote Virtualization: Floor Wax, Dessert Topping and The End of Information Security As We Know It? - Christopher Hoff, Unisys GPUs, password recovery and thunder tables - Andrey Belenko, ElcomSoft Incident Management - tasks and organization. - Volker Kozok, German Ministry of Defense A penetration testing learning kit - Ariel Waissbein, Core Security Organizing and analyzing logdata with entropy - Sergey Bratus, Dartmouth College Hacking Second Life(TM) - Michael Thumann, ERNW GmbH Enterprise Webapplication Security [EMAIL PROTECTED] S.E., Dr. Johannes Raab, Allianz S.E. Tapping $$$ Enterprises - Pierre Kroma Virtual Honey Pots - Thorsten Holz, Universitaet Mannheim SCADA and National Critical Infrastructures: is security an optional? - Raoul Chiesa Data Loss Protection - Hope or Hype? - Enno Rey Angus Blitter -- Additional Pre-Con Latenight Talks Packet Wars Evening Fun -- thanks, Enno Rey -- Enno Rey Check out www.troopers08.org! ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Roland Fiege, Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Troopers08 Security Conference, 23/24 April (Munich/Germany)
Troopers08 Presentations Keynote on Invulnerable Software - Dan Bernstein KIDS - Kernel Intrusion Detection System - Rodrigo Branco State of Security - Andrew Cushman, Microsoft Release of the next revision of the free Exploit-Me series of application penetration testing tools - Nish Bhalla, Security Compass Side Channel Analysis - Job de Haas, Riscure Hackertools according to German law (? 202c StGB) - Horst Speichert, Lawyer Hardening Oracle in Corporate Environments - Alexander Kornbrust, Red-Database-Security Virtualization: There is no spoon - Michael Kemp Straight Talk about Cryptography - Jon Callas, PGP Evilgrade: You have pending upgrades - Francisco Amato Self defending networks - hype or essential need for international organisations? - Rolf Strehle, VOITH AG Keynote Virtualization: Floor Wax, Dessert Topping and The End of Information Security As We Know It? - Christopher Hoff, Unisys GPUs, password recovery and thunder tables - Andrey Belenko, ElcomSoft Incident Management - tasks and organization. - Volker Kozok, German Ministry of Defense A penetration testing learning kit - Ariel Waissbein, Core Security Organizing and analyzing logdata with entropy - Sergey Bratus, Dartmouth College Hacking Second Life(TM) - Michael Thumann, ERNW GmbH Enterprise Webapplication Security [EMAIL PROTECTED] S.E., Dr. Johannes Raab Thomas Stocker, Allianz S.E. Tapping $$$ Enterprises - Pierre Kroma Virtual Honey Pots - Thorsten Holz, Universitaet Mannheim SCADA and National Critical Infrastructures: is security an optional? - Raoul Chiesa Data Loss Protection - Hope or Hype? - Enno Rey Angus Blitter -- Additional Pre-Con Latenight Talks PacketWars Evening Fun check out www.troopers08.org! thanks, -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Roland Fiege, Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Exploring the UNKNOWN: Scanning the Internet via SNMP!
Hi, all due to the unreliable nature of UDP. But the most important thing is, that if you do it large scale*, you have to wait for some sort of reply anyways, either TCP SYN|ACK or some application data. This time of waiting can be used to SYN/request yet another 10,000 hosts. Thus, how fast a scanner is does not depend on UDP or TCP, it depends on the upper protocols. it mainly depends on the implementation of the scanner. We did some large scale internet SNMP scanning some time ago [see http://www.ernw.de/content/e7/e181/e671/download690/ERNW_026_SNMP_HitB_Dubai_2007_ger.pdf] and used our own scanning tool [http://www.ernw.de/download/snmpattack.pl]. Within the different releases of the tool there were _big_ differences as for the scanning speed. thanks, Enno -- Enno Rey Check out www.troopers08.org! ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Roland Fiege, Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Troopers 08 Security Conference, Call for Papers
Troopers 08 - get skilled or get owned is a new two-day conference that brings together some of the brightest minds of the international infosec community. The event will be held on 23rd and 24th april 2008 in Munich/Germany. Keynotes will be given by Dan Bernstein and Christofer Hoff. There will be two tracks, a kind-of-classical one that we call the Attack Track (covering cutting-edge hacktechniques and security discussions) and another one we call the Defend Track which mainly addresses ISOs from large organizations and their specific needs and concerns. Additionally a series of (20-30 minute) Late Night talks will be held in the evening of april 22nd for those who arrive early and can't wait to get technical input. This call for papers addresses security researchers interested in sharing their knowledge with other researchers and a high level audience. We would like to invite everyone with special knowledge in breaking security in whatever area or practical experience in securing complex information systems to present their skills. Speaker Privileges == We will cover the flight costs (limited to EUR 500 for speakers from Europe and US$ 1500 for speakers from other continents) and two nights of accomodation. For sole late night speakers no expenses will be covered (but speaker experience will be gained ;-). Fresh Headz = Given an appropriate subject and technical level we're happy to welcome fresh speakers (not seen in various places before) and we're happy to help you with setting up your talk (or getting over your pre-talk excitement). Submissions === We are mainly interested in talks on Virtualization Stuff Modern physical attacks (Eavesdropping/tapping, bugging devices, attacks on mobile devices) Embedded Devices Industrial Networking Security in Carrier Environments Secure Coding If you think your talk could be appropriate for the Defend Track feel free to apply for that one. Be aware the audience will be different from the one you have at - say - CCC (and we've very few speaker slots left there, too). Of course you can apply for a sole late-night talk as well. Note that - given the attractiveness of Munich's night life - you might have a very small audience there. Obviously heavy vendor-pitching will not be welcomed warmly and we reserve the right to ask for modifications of confirmed talks if we have the impression there's too much of that in a talk. If you have to offer another Web 2.0 cross browser unicode overflow talk you may submit it. However chances will be bigger if you have some more innovative stuff to talk about... CFP submissions must include the following information: 1) Track (Attack, Defend, Late Night) 2) Brief biography including list of publications and papers published previously. 3) Proposed presentation title synopsis/description. 4) Contact Information (full name, alias, handler, e-mail, postal address, phone, country of origin, special meal requirement, smoking habits ;-). 5) Employment and/or affiliations information. 6) Why is your material different or innovative or significant? Please note that all speakers will be allocated 50 minutes of presentation time + 10 minutes Q+A. Any speakers that require more time must inform the CFP committee in the course of the submission. By agreeing to speak at Troopers 08 you are granting ERNW GmbH the rights to reproduce, distribute, advertise and show your presentation including but not limited to http://www.troopers08.org, printed and/or electronic advertisements, and all other mediums. Important Dates === Deadline for Submission: 15 Feb 2008, Final Notification: 1 Mar 2008, Presentation slides due: 1 Apr 2008 The conference: 23-24 April 2008 == thanks, -- Enno Rey Check out www.troopers08.org! ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Roland Fiege, Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
because they perform risk-analysis: - what are the threats to my assets? - which role does MD5 play there? - any subsequent risk then from using it? - high priority risk? mitigating controls or risk acceptance? would you be so kind to show me a real-world attack against a VPN using MD5 hashing? ... thanks, Enno On Sat, Dec 01, 2007 at 06:39:56PM +0100, James Matthews wrote: I agree! It should be changed and i have no idea why people still use it! On Dec 1, 2007 4:20 PM, Steven Adair [EMAIL PROTECTED] wrote: There you have it. Surely a GPL'd tool implementing this attack style will be available shortly. And since Chinese researchers have been attacking SHA-1 lately, should SHA-256 be considered the proper replacement? I am unsure :-( Yes, it would probably be a good idea. I think this link has been put out on this list in the past with respect to discussion on SHA-1: http://csrc.nist.gov/groups/ST/toolkit/secure_hashing.html NIST might not be the bible to you on what to follow and implement, but they are definitely worth listening to (even if you're not a U.S. Federal agency) when they tell you not to use something anymore. For those that don't want to click and just want to read, here's the relevant parts: March 15, 2006: The SHA-2 family of hash functions (i.e., SHA-224, SHA-256, SHA-384 and SHA-512) may be used by Federal agencies for all applications using secure hash algorithms. Federal agencies should stop using SHA-1 for digital signatures, digital time stamping and other applications that require collision resistance as soon as practical, and must use the SHA-2 family of hash functions for these applications after 2010. After 2010, Federal agencies may use SHA-1 only for the following applications: hash-based message authentication codes (HMACs); key derivation functions (KDFs); and random number generators (RNGs). Regardless of use, NIST encourages application and protocol designers to use the SHA-2 family of hash functions for all new applications and protocols. Steven http://www.securityzone.org -- Kristian Erik Hermansen I have no special talent. I am only passionately curious. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- http://search.goldwatches.com/?Search=Movado+Watches http://www.jewelerslounge.com http://www.goldwatches.com ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- Enno Rey ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902 PGP FP 055F B3F3 FE9D 71DD C0D5 444E C611 033E 3296 1CC1 Handelsregister Heidelberg: HRB 7135 Geschaeftsfuehrer: Roland Fiege, Enno Rey ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/