tag:blogger.com,1999:blog-69522211098687919602011-10-02T00:29:14.935+08:00Information Security Management & TechnologySinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.comBlogger141100tag:blogger.com,1999:blog-6952221109868791960.post-68931908628883213272009-04-30T12:36:00.007+08:002009-04-30T14:16:47.483+08:00

I wrote these 10 tips with reference from Internet sources and my personal experience. When I did security consulting I traveled a lot, the best tip I can recall is that I wrote something in the default paper card inside my laptop bag: "If you get this laptop, please call xxxxxx (my cell number), I will give you CNY1500 in cash face-to-face!" -- enough money for an old IBM R51. But fortunately my

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-88632710924420438542009-03-17T10:19:00.003+08:002009-03-17T10:26:14.424+08:00

Best hacking book by former Foundstone guys just released the sixth edition!Updates:New chapter on hacking hardware, including lock bumping, access card cloning, RFID hacks, USB U3 exploits, and Bluetooth device hijackingUpdated Windows attacks and countermeasures, including new Vista and Server 2008 vulnerabilities and Metasploit exploitsThe latest UNIX Trojan and rootkit techniques and dangling

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com3tag:blogger.com,1999:blog-6952221109868791960.post-84410615442684539642009-03-16T16:03:00.002+08:002009-03-16T16:06:15.061+08:00

WebGoat by OWASP is a good platform to learn and practice web application security. For me, I just used it in a meeting with our app development and operation teams to show how a web app could easily be compromised due to lacking of security consideration in design and maintenance phase.As far as I know, the feedback is good, and they started to show interests and ask questions on web/app

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com1tag:blogger.com,1999:blog-6952221109868791960.post-39900894800455270012009-03-13T13:03:00.001+08:002009-03-13T13:04:50.768+08:00

In security community, there is a common used standard to evaluate a patch or a vulnerability called CVSS. Many product vendors such as Cisco use it to give a score for patch of their product, and also security service vendors such as Nessus, Qualys and IBM ISS also use CVSS to calculate a score for patch when supporting their vulnerability scanner, IDS, or patch notification service delivery.So

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-43925998611365727162009-01-06T17:23:00.005+08:002009-04-30T13:32:22.685+08:00

On FiRST site only v1 offline calc can be found, and all v2 calc are provided as online now. So I modified the v2 excel calc from the v1 one with new equation, but it still took me 2 hours to make it.Click here to download!

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com2tag:blogger.com,1999:blog-6952221109868791960.post-74101367238854432792008-12-31T18:05:00.004+08:002008-12-31T18:15:08.989+08:00

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-31987082077656336522008-12-30T13:56:00.006+08:002008-12-30T14:28:22.125+08:00

This is a huge book with 958 pages! I only finished reading Part1: From Vulnerability to Patch, which includes 11 chapters and 200 pages. The rest parts are only for reference when needed.The following is six stages of a Vulnerability Management plan cut from the book. This is what the Part 1 tells, and introduces some free and commerical tools for implementation.

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com1tag:blogger.com,1999:blog-6952221109868791960.post-14835835783390069372008-12-03T11:08:00.008+08:002008-12-03T11:28:29.351+08:00

Foundstone is famous for its free security tools, such as fport, superscan and sqlscan. Long time ago the company started providing assessment service with their own assessment software, but even after it was acquired by McAfee, this software was not available on public.Now McAfee are selling their appliance with vulnerability scanning and management software preinstalled, it’s impossible for a

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com1tag:blogger.com,1999:blog-6952221109868791960.post-78280130943334515282008-11-11T12:35:00.004+08:002008-12-30T14:25:30.560+08:00

This book is a detailed user manual for Metaploit Framework except case studies on vulnerability research, but to me the most interesting part is appendix B: Building a Test Lab for Penetration Testing. The author has shared much experience about this, which deserves a read.

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-82756464242923710752008-11-06T16:39:00.003+08:002008-11-11T10:54:49.969+08:00

It’s already 2 weeks since Microsoft released patch for MS08-067. The company I am working for has already patched 88% windows servers in the first week, and till now, 98% servers were patched.This time frame is well compliant with company security policy, and here I have some experience to share after this urgent patching period.First of all, for a vulnerability management program, assets

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-64971821548598124532008-10-31T13:50:00.012+08:002008-10-31T15:12:23.740+08:00

For database admins, it is not a nightmare to handle with lost sql server password, which can be easily retrieved from application source code or just reset it in Enterprise Manager.But for a penetration tester, he should know where the passwords store, how to dump hashes, and crack them to gain more information. And it is necessary to audit the strength of sql server passwords, because weak sql

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com6tag:blogger.com,1999:blog-6952221109868791960.post-59702742932004761592008-10-27T17:51:00.007+08:002008-10-31T15:10:25.475+08:00

The MS08-067 exploit for script kids was released yesterday. I tested it in an unpatched server, it really worked.Compared with DMZ, it's also a big risk for company intranet, patches should be applied to intranet servers running applications with sensitive information such as finance, hr, etc.

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-49626054212694016462008-10-22T15:58:00.006+08:002008-10-31T15:08:36.032+08:00

This free small password generator can help system administrators to generate complex passwords to fulfill security policy, provided both online and offline.

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0tag:blogger.com,1999:blog-6952221109868791960.post-11087527325980399962008-10-22T15:52:00.003+08:002008-10-22T15:57:32.573+08:00

In the past four years I was involved with security service projects, so I had to travel around the country to stay with various clients. The methodology of such projects was outdated, project managment was what I cared about, not security technology. That's why I am silent in the community, and also with some other interests. But now I joined another company with an in-house security position,

Sinbadhttp://www.blogger.com/profile/09016215170153313312noreply@blogger.com0