Technology

 

Looks like the offensive security guys have been busy

Check out what is going on Here

Need your own internet repository

How about an 80 terabyte crawl of the entire web

http://ianews.wordpress.com/2012/10/26/80-terabytes-of-archived-web-crawl-data-available-for-research/

This looks very interesting

http://memoto.com/

So it begins!

Well, registration was supposed to start last night. They had some badge delays, and I just got my badge about 15 minutes ago. So a late start. So far it is typical hacker convention stuff. Basically everyone trying to prove who’s junk is bigger than everyone else’s

 

Ahh BlackHat and Wahh Live!

Using Chrome for Security Testing

Great article for command line chrome startup on mac using developer tools

http://www.frameloss.org/2011/11/01/using-google-chrome-for-security-testing/

Web Testing Framework For Firefox

First up OWASP Mantra

http://www.getmantra.com/download/index.html

XSS Demo using mantra

OWASP Mantra – Cross Site Scripting from Abhi M on Vimeo.

Broken Authentication

OWASP Mantra – Broken Authentication from Abhi M on Vimeo.

Broken Session Management

OWASP Mantra – Broken Session Management from Abhi M on Vimeo.

Insecure Direct Object References

OWASP Mantra – Insecure Direct Object References from Abhi M on Vimeo.

Next up, you have probably heard of SamuraiWTF as an operating system. But did you know they also had a firefox extension collection as well?

26 separate plugins to make your browser a pentesting monster.

https://addons.mozilla.org/en-US/firefox/collections/rsiles/samurai/

Thought this was really cool. You learn VI while navigating the game

http://vim-adventures.com/

People Still Use Mainframes UGGH!

Recently had to test a mainframe app. I had never done that before and needed a rundown on JCL and Cobalt. This is a great resource that breaks both of these components down

http://www.mainframegurukul.com/srcsinc/