April Fools Day has always been a fun day for technology people, especially online. It seems to have become even more so for security people, as every April 1st the security mailing lists get hit with lots of April Fools advisories, fake tool releases, fake announcements from big projects and organizations like Metasploit and the […]
I am continually impressed by both the quantity and quality of speakers we have at our Austin Hackers Anonymous (AHA!) meetings every month. This last meeting was our 7th technical meeting and we had no less than 10 individual speakers with anywhere from 5 to 30 minutes each, each with something unique and interesting to […]
Early last Friday morning I flew out of DFW on my way to D.C. for ShmooCon. I arrived in D.C. at noon after the pilot of my plane aborted the first landing and had to make a second approach. I forgot just how difficult the approach is flying into Reagan National Airport. If I recall […]
During the first 3 hour leg of my trip, I finished the slides for my talk. During the second, 8 hour leg of my trip, I managed to sleep for about 5 of them. I arrived at 7 am local time, took an hour to get through customs and get my baggage, another hour to […]
The other day while migrating data from my old Linux workstation to my new one, I came across a file that had my login credentials for both my personal account and the CAU team account over at Distributed.net. If you’re not familiar with Distributed.net, it’s a massively multi-player (heh) encryption-cracking effort. By sheer force of […]
I love Diebold, I really do… they’re a non-stop fountain of hilarity… I can’t believe they are still in business.
Today, Bruce Schneier posted an essay to his blog arguing the case for full disclosure of software vulnerabilities, which I am also in favor of. It’s apparently a side-bar to an article in CSOOnline entitled “The Chilling Effect” which is about some of the growing issues surrounding vulnerability research in web software. There’s also two […]
I’ve been invited to speak at EUSecWest 2007, an information security conference in London on March 1st and 2nd. I’ll be giving an updated version of my VoIP Attacks! presentation.
I recently gave a presentation at ToorCon 8 in San Diego on the subject of VoIP attacks. You can find slides and video here. A writeup from Wired News can also be found here.
My presentation earlier today went very well. Other than a few technical difficulties with the A/V setup regarding my laptop audio and running out of time with about 4 slides and my conclusion left and having to rush through the end, I was very happy with it. Slides in various formats and video of my […]