BSides Deleware

Interested in coming out to a free security conference fairly close to the Maryland area? Interested in hearing me speak? Want to get away from a day of work? If you answers yes to any of these questions may I suggest you Google BSides Deleware. BSides offer a great learning opportunity and are free (registration […]

Privacy Please

Ever tried to regain some of your privacy and reclaim your online identity? The other day I reading some tweets and came across this lovely link http://www.accountkiller.com/en/ . Granted based on some of the comments I read this site may need some updating, but being in the infosec field for a while I have never seen […]

DerbyCon Videos

I had the luxury of attending DerbyCon this year – my first.  There have been several write-ups about how good the conference is – and yes I agree that it is top notch but that is not why I am writing this post. I am writing to thank the AV staff at DerbyCon – specifically […]

BYOD – at your own risk

The “Rabbott” and I have been talking about the subject of BYOD so I thought I would share here. I am not sure why everyone is calling this a new problem – it has been around for years – even before mobile phones.  How many of you are old enough to remember when floppies became “standard”? I am. […]

ISACA Training

The “Rabbott” and I were chatting this morning and got on the subject of training and she was asking me if I was going to any of the upcoming ISACA seminars/training events.  Short answer is I am going to try and get to 1 or more of them – but enough about that, back to […]

IE 0-Day

If you havent heard it by now it must be because you are “offline” – all the news reporting on the newly discovered (or should I say publicly discovered) 0-day vulnerability effecting IE 6-9 (pretty much all of them).  I figured I couldn’t have a security related blog without making some comments on this, so here you […]

What if…

I saw this great conversation on Twitter  started by Rob Fuller (@mubix): “What if: All pen-test reports were required to become public record after 6 months?” My thoughts on the subject: 1. I remember the saying “He who has nothing to hide hides nothing”. If you fixed them then who cares????  I like the idea – […]

Operation “CrabbyCon”

Want to be part of something different?   Want to learn something new? Do you enjoy the beach? So do we. Local security engineers/researchers are looking to bring a security conference to our area – OC to be exact.  Being in the early planning/feasibility stage we welcome ideas, comments,  and feedback. More to come….

USB RubberDucky DuckSauce v.02 almost done

Hold on folks – we are a few days away from the release of DuckSauce v.02 – more madness for your USB RubberDucky (visit Hak5 to get one now).  A little teaser for what is included: – Ability to convert existing powershell code (ps1 file format) to Duck code – Ability convert katuilya payloads to Duck code […]