Interested in coming out to a free security conference fairly close to the Maryland area? Interested in hearing me speak? Want to get away from a day of work? If you answers yes to any of these questions may I suggest you Google BSides Deleware. BSides offer a great learning opportunity and are free (registration […]
Author Archives: raymond
Privacy Please
Ever tried to regain some of your privacy and reclaim your online identity? The other day I reading some tweets and came across this lovely link http://www.accountkiller.com/en/ . Granted based on some of the comments I read this site may need some updating, but being in the infosec field for a while I have never seen […]
DerbyCon Videos
I had the luxury of attending DerbyCon this year – my first. There have been several write-ups about how good the conference is – and yes I agree that it is top notch but that is not why I am writing this post. I am writing to thank the AV staff at DerbyCon – specifically […]
BYOD – at your own risk
The “Rabbott” and I have been talking about the subject of BYOD so I thought I would share here. I am not sure why everyone is calling this a new problem – it has been around for years – even before mobile phones. How many of you are old enough to remember when floppies became “standard”? I am. […]
ISACA Training
The “Rabbott” and I were chatting this morning and got on the subject of training and she was asking me if I was going to any of the upcoming ISACA seminars/training events. Short answer is I am going to try and get to 1 or more of them – but enough about that, back to […]
Preparation for DerbyCon (or any other con for that matter)
As DerbyCon fast approaches, I have put together a list of items that I do before going to any security conference in hopes that it helps better protect my laptop (after all we are at a security con with folks that have skills). Here are my tips (in no particular order) – I would love […]
IE 0-Day
If you havent heard it by now it must be because you are “offline” – all the news reporting on the newly discovered (or should I say publicly discovered) 0-day vulnerability effecting IE 6-9 (pretty much all of them). I figured I couldn’t have a security related blog without making some comments on this, so here you […]
What if…
I saw this great conversation on Twitter started by Rob Fuller (@mubix): “What if: All pen-test reports were required to become public record after 6 months?” My thoughts on the subject: 1. I remember the saying “He who has nothing to hide hides nothing”. If you fixed them then who cares???? I like the idea – […]
Operation “CrabbyCon”
Want to be part of something different? Want to learn something new? Do you enjoy the beach? So do we. Local security engineers/researchers are looking to bring a security conference to our area – OC to be exact. Being in the early planning/feasibility stage we welcome ideas, comments, and feedback. More to come….
USB RubberDucky DuckSauce v.02 almost done
Hold on folks – we are a few days away from the release of DuckSauce v.02 – more madness for your USB RubberDucky (visit Hak5 to get one now). A little teaser for what is included: – Ability to convert existing powershell code (ps1 file format) to Duck code – Ability convert katuilya payloads to Duck code […]