|
How To Break Web Software - A look at security vulnerabilities in web software |
| Google TechTalks |
| Date: 2007-09-16 14:21:55 - Added by: Schneider |
| Views: 498 - Votes: 0 - Rating: 0 |
| |
|
Shmoo1861 - Joel Bruno Eric Smith - VoIP Vonage And Why I Hate Asterisk |
| Recorded at the www.ShmooCon.org HACKING AND COMPUTER SECURITY CONFERENCE, March 24, 2007 in Washington, D.C. Content produced by www.MediaArchives.com --- VoIP, Vonage, and Why I Hate Asterisk, with Joel Bruno and Eric Smith. Asterisk, the Open Source PBX, is highly regarded and heralded by masses of eggheads as the next killer DIY app. You've been to their presentations and have overheard their conversations at the bar: "Imagine having all the power of a large commercial PBX in your home. Asterisk gives you this power --- Multiple extensions, advanced call routing, separate voice mail boxes -- plus a lot more." This presentation will take a look at the potential business and home uses of Asterisk. We will then consider the many security issues inherent to most VoIP deployments and showcase the SIPinator, our appliance created to exploit one of our favorite vulnerabilities. Joel Bruno is a software developer for a large information technology company you've probably heard of. He has some certifications you probably haven't heard of. He has said and done things he isn't proud of. He is easily amused by shiny objects and, hence, was quickly drawn to VOIP technology by the tales of wonderment. Joel's interests center around hacking consumer devices and voiding warranties. Eric Smith is the Network Administrator for Bucknell University, located in Lewisburg, Pennsylvania. He has over 10 years of field experience in network and systems administration, with a meandering focus in security. He has provided consultation services in places such as Research Triangle Park and New York City. Eric is a founding member of PreSet Kill Limit, the security research group which has won the Defcon Wardriving Contest for the past two years. 18619 6 |
| Date: 2007-09-16 14:21:42 - Added by: Schneider |
| Views: 246 - Votes: 0 - Rating: 0 |
| |
|
Blocking ICMP On Windows XP Pro |
| This is a video describing how to set up a snap-in security policy in windows xp to block all icmp traffic in and out of the box. Very good thing to do if you want your pc to show a time out when someone pings you. This is a definite watch to anyone in the security field so check it out! |
| Date: 2007-09-16 14:21:29 - Added by: Schneider |
| Views: 442 - Votes: 0 - Rating: 0 |
| |
|
Richard Rushing, AirDefense CSO, on Wireless Security |
| At the recent RSA Conference 2007 in San Francisco, AirDefense was doing wireless airwave monitoring. AirDefense found more than half of the 347 wireless devices susceptible to "Evil Twin" types of attacks, combined with some of the latest zero-day attacks. In this video you'll get a picture of the wireless (in)security at a show where security professionals meet as well as some advice on how to get more secure. |
| Date: 2007-09-16 14:19:52 - Added by: Schneider |
| Views: 196 - Votes: 0 - Rating: 0 |
| |
|
JAVAWUG BOF XV Part II : "JSF Security" by Duncan Mills, Oracle |
| This is a video capture of the Java Web User Group (JAVAWUG.com) birds-of-a-feather presentation that took place on Friday 3rd February 2006 at the Oracle City of London office. Duncan Mills, Oracle Java Evangelist presents ``JSF Security''. Duncan discusses the oversight of the original JSF 1.0 specification of not adding role based security attributes to the standard UI component model. He talks about an open source SourceForge project that extends JSF to support this feature. |
| Date: 2007-09-16 14:17:32 - Added by: Schneider |
| Views: 171 - Votes: 0 - Rating: 0 |
| |
|
Web Applications and the Ubiquitous Web |
| Google TechTalks |
| Date: 2007-09-16 14:15:11 - Added by: Schneider |
| Views: 233 - Votes: 0 - Rating: 0 |
| |
|
Core Patterns for Web Permissions |
| Google TechTalks |
| Date: 2007-09-16 14:13:39 - Added by: Schneider |
| Views: 149 - Votes: 0 - Rating: 0 |
| |
|
Microsoft shows how to secure SQL servers |
| This video shows excerpts from a Microsoft TechEd training class on how to secure a Microsoft SQL server. The purpose here is to show the futility of trying to protect the data in the database from the database level. Data must be protected by the applications that are written to access the data. Think about it; databases are designed to store vast amounts of information and retrieve it on demand. |
| Date: 2007-09-16 14:11:38 - Added by: Schneider |
| Views: 214 - Votes: 0 - Rating: 0 |
| |
|
Gary McGraw: Exploiting Online Games |
| This talk (based on a book of the same title co-authored by Greg |
| Date: 2007-09-16 14:11:21 - Added by: Schneider |
| Views: 303 - Votes: 0 - Rating: 0 |
| |
|
Demonstration of working of a Java implementation of a Packet Sniffer |
| With the increasing dependence of mankind on technology and with its development influencing our daily lives sectors such as Global businesses, governments, seats of learning and home users are beginning to become aware of the implications attached to computer security. Many feel under threat, reluctant to transfer finance electronically and susceptible to computer fraud. |
| Date: 2007-09-16 14:09:41 - Added by: Schneider |
| Views: 262 - Votes: 0 - Rating: 0 |
| |
