Looking for something in particular?

• Home
• About
• Portfolio
• Protected
• Contact

Best from Defcon 15

March 26, 2009 | Leave a Comment

• T101: Making of the DEFCON 15 Badges by Joe Grand
• T102: Q&A with Bruce by Bruce Schneier
• T103: Turn-Key Pen Test Labs by Thomas Wilhelm
• T104: How I Learned to Stop Fuzzing and Find More Bugs by Jacob west
• T105: Convert Debugging - Circumventing Software Armoring Techniques by Danny Quist & Valsmith
• T106: Functional Fuzzing with Funk by Benjamin Kurtz
• T107: Tactical Exploitation by H.D.Moore & Valsmith
• T108: Intelligent Debugging for vuln-dev by Damien Gomez
• T109: Fingerprinting and Cracking Java Obfuscated Code by Subere
• T110: Comparing Application Security Tools by Edward Lee
• T111: Meet the Feds (Panel Discussion)
• T112: No-Tech Hacking by Johnny Long
• T131: The SOA/XML Threat Model and New XML/SOA/Web 2.0 Attacks & Threats by Steve Orrin
• T133: Pen-testing Wi-Fi by Aaron Peterson
• T134: Hacking EVDO by King Tuna
• T135: Multipot - A More Potent Variant of Evil Twin by K.N.Gopinath
• T136: The Next Wireless Frontier - TV White Spaces by Doug Mohney
• T137: Creating Unreliable Systems - Attacking the Systems that Attack You by Sysmin & Marklar
• T138: GeoLocation of Wireless Access Points and “Wireless GeoCaching” by Ricky Hill
• T139: Being in the Know… Listening to and Understanding Modern Radio Systems by Brett Neilson
• T140: The Emperor Has No Cloak - Web Cloaking Exposed by Vivek Ramachandran
• T141: Hardware Hacking for Software Geeks by nosequitor & Ab3nd
• T142: The Church of WiFi Presents: Hacking Iraq by Michael Schearer
• T161: HoneyJax (aka Web Security Monitoring and Intelligence 2.0) by Dan Hubbard
• T162: Hacking Social Lives: MySpace.com by Rick Deacon
• T163: The Inherent Insecurity of Widgets and Gadgets by Aviv Raff & Iftach Ian Amit
• T164: Greater Than 1 - Defeating “Strong” Authentication in Web Applications (for Online Banking) by Brendan O’Connor.
• T165: Intranet Invasion With Anti-DNS Pinning by David Byrne
• T166: Biting the Hand that Feeds You - Storing and Serving Malicious Content From Well Known Web Servers by Billy Rios & Nathan McFeters
• T201: Church Of WiFi’s Wireless Extravaganza by Church of WiFi’s
• T202: SQL Injection and Out-of-Band Channeling by Patrik Karlsson
• T203: Z-Phone by Phillip Zimmermann
• T204: OpenBSD Remote Exploit and Another IPv6 Vulnerabilities by Alfredo Ortega
• T205: MQ Jumping by Martyn Ruks
• T206: Virtual World, Real Hacking by Greg Hoglund
• T207: It’s All About the Timing by Haroon Meer & Marco Slaviero
• T208: Revolutionizing the Field of Grey-box Attack Surface Testing with Evolutionary Fuzzing by Jared DeMott, Dr. Richard Enbody & Dr. Bill Punch
• T209: How Smart is Intelligent Fuzzing - or - How Stupid is Dumb Fuzzing? by Charlie Miller
• T210: INTERSTATE: A Stateful Protocol Fuzzer for SIP by Ian G. Harris
• T211: One Token to Rule Them All by Luke Jennings
• T212: Trojans - A Reality Check by Toralv Dirro & Dirk Kollberg
• T231: Multiplatform Malware Within the .NET-Framework by Paul Ziegler
• T232: Malware Secrets by Valsmith & Delchi
• T233: 44 Lines About 22 Things That Keep Me Up at Night by Agent X
• T234: Click Fraud Detection with Practical Memetrics by Broward Horne
• T235: Fighting Malware on your Own by Vitaliy Kamlyuk
• T236: Virtualization: Enough Holes to Work Vegas by D.J.Capelis
• T237: Homeless Vikings, (Short-Lived bgp Prefix Hijacking and the Spamwars) by Dave Josephsen
• T238: Webserver Botnets by Gadi Evron
• T239: The Commercial Malware Industry by Peter Gutmann
• T240: CaffeineMonkey - Automated Collection, Detection and Analysis of Malicious JavaScript by Daniel Peck & Ben Feinstein
• T241: Greetz from Room 101 by Kenneth Geers
• T242: Estonia and Information Warfare by Gadi Evron
• T261: The Completion Backward Principle by geoffrey
• T262: Boomstick Fu: The Fundamentals of Physical Security at its Most Basic Level by Deviant Ollam, Noid, Thorn, Jur1st
• T263: Locksport: An Emerging Subculture by Schuyler Towne
• T264: Satellite Imagery Analysis by Greg Conti
• T265: High Insecurity: Locks, Lies, and Liability by Marc Weber Tobias & Matt Fiddler
• T301: Analysing Intrusions & Intruders by Sean Bodmer
• T302: Aliens Cloned My Sheep by Major Malfunction
• T303: Breaking Forensics Software by Chris Palmer & Alex Stamos
• T304: Re-Animating Drives and Advanced Data Recovery by Scott Moulton
• T305: Cool Stuff Learned from Competing in the DC3 Digital Forensic Challenge by David C. Smith
• T306: Windows Vista Log Forensics by Rich Murphey
• T307: When Tapes Go Missing by Robert Stoudt
• T308: CiscoGate by The Dark Tangent
• T309: Hacking UFOlogy - Thirty Years in the Wilderness of Mirrors by Richard Thieme
• T311: Hack Your Car for Boost and Power! by Aaron Higbee
• T312: The Executable Image Exploit by Michael Schrenk
• T331: A Crazy Toaster: Can Home Devices Turn Against Us? by Dror Shalev
• T332: IPv6 is Bad for Your Privacy by Janne Lindqvist
• T333: Injecting RDS-TMC Traffic Information Signals a.k.a. How to freak out your Satellite Navigation by Andrea Barisani
• T335: Unraveling SCADA Protocols: Using Sulley Fuzzer by Ganesh Devarajan
• T336: Hacking the Extensible Firmware Interface by John Heasman
• T337: Hacking your Access Control Reader by Zac Franken
• T338: Security by Politics - Why it Will Never Work by Lukas Grunwald
• T339: Kernel Wars by Joel Eriksson, Karl Janmar, Claes Nyberg, Christer Öberg
• T340: (un)Smashing the Stack: Overflows, Counter-Measures, and the Real World by Shawn Moyer
• T341: Remedial Heap Overflows: dlmalloc styl by atlas
• T342: Thinking Outside the Console (box) by Squidly1
• T361: Hacking the EULA44 - Reverse Benchmarking Web Application Security Scanners by Tom Stracener & Marce Luck
• T362: Network Mathematics - Why is it a Small World? by Oskar Sandberg
• T363: Beyond Vulnerability Scanning - Extrusion and Exploitability Scanning by Matt Richard
• T364: LAN Protocol Attacks Part 1 - Arp Reloaded by Jesse D’Aguanno
• T365: Entropy-Based Data Organization Tricks for Log and Packet Capture Browsing by Sergey Bratus
• T366: Securing Linux Applications With AppArmor by Crispin Cowan
• T401: Disclosure and Intellectual Property Law - Case Studies by Jennifer Granick
• T402: Computer and Internet Security Law - A Year in Review 2006-2007 by Robert Clark
• T403: Picking up the Zero Day; An Everyones Guide to Unexpected Disclosures by Dead Addict
• T404: Everything you ever wanted to know about Police Procedure in 50 minutes by Steve Dunker
• T405: Bridging the Gap Between Technology and the Law by John Benson
• T406: Protecting Your IT Infrastructure From Legal Attacks - Subpoenas, Warrants and Transitive Trust by Alexander Muentz
• T407: Digital Rights Worldwide: Or How to Build a Global Hacker Conspiracy by Danny O’Brien
• T408: A Journalist’s Perspective on Security Research by Peter Berghammer
• T409: Teaching Hacking at College by Sam Bowne
• T410: Faster PwninG Assured: New adventures with FPGAs by David Hulton
• T411: Ask the EFF (Panel Discussion)
• T431: The Market for Malware by Thomas Holt
• T433: Routing in the Dark - Pitch Black by Nathan Evans & Christian Grothoff
• T434: Technical Changes Since You Last Heard About Tor by Nick Mathewson
• T435: Social Attacks on Anonymity Networks by Nick Mathewson
• T436: Tor and Blocking - Resistance by Roger Dingledine
• T438: Saving the Internet With Hate by Zed Shaw
• T439: Securing the Tor Network by Mike Perry
• T441: Portable Privacy by Steve Topletz
• T442: Real-time Steganography with RTP by |)ruid
• T501: Vulnerabilities and The Information Assurance Directorat by Tony Sager
• T502: Meet The VCs (Panel Discussion)
• T503: Anti Spyware Coalition (Panel Discussion)
• T504: Disclosure Panel (Panel Discussion)
• T505: Dirty Secrets of the Security Industry by Bruce Potter
• T506: Self Publishing in the Underground by Myles Long, Rob “Flack” O’Hara and Christian “RaD Man” Wirth
• T507: The Hacker Society Around the (Corporate) World by Luiz Eduardo
• T508: Creating and Managing Your Security Career by Mike Murray & Lee Kushner
• T509: kNAC! by Ofir Arkin
• T531: Hack Your Brain with Video Games by Ne0nRa1n & Joe Grant
• T532: How to be a WiFi Ninja by Pilgrim
• T534: The Science of Social Engineering: NLP, Hypnosis and the Science of Persuasion by Mike Murray & Anton Chuvakin
• T535: Black Ops 2007: Design Reviewing The Web by Dan Kaminsky
• T536: The Edge of Forever - Making Computer History by Jason Scott
• T538: Stealing Identity Management Systems by Plet
• T539: Internet Wars 2007 (Panel Discussion)

Have fun!

.net session timeout in IIS6

March 26, 2009 | Leave a Comment

Does this sound simple web.config setup?
Nope this is way beyond that newbie configuration.

Problem: We were facing timeout issue on one of our servers. Web.config settings had no effect on the time out.

Note: In all screen shots pink color is hiding the actual server details.

Solution:
So here are some more interesting findings related to timeouts of sessions in IIS6 hosted on a windows 2003 server. You may need to change one or more of these setups in your server according to your setup.
There are totally 5 setups that influence your timeout. All of those are discussed here.
1. Web.config file of Application: First one to influence timeout is Session timeout setting in your we.config file.

Note: Web.config file is inherited to the subfolders and subfolders config settings take the precedence in case they exist.

2. Application session timeout in IIS:
Go to IIS, right click on the web application, go to properties. Go to Directory tab, click on Configuration button. Application configuration tab opens, click on Options tab as in the screenshot, you will find enable session state. Change the session time out period here.














3. Default website session timeout in IIS: Right click default web site under IIS and choose Home directory tab. Click on configuration button to open application configuration. Choose options tab and you will find Enable session state again similar to session state of each application. Enter higher session timeout period which will be application to all sites in the webserver.














4. Change Worker process idle timeout of application pool – Shutdown worker process after being idle for (time in minutes) – Default is 20 minutes. This setup is applied for all websites that use this application pool. To change this, Right click on the required application pool, choose Performance tab, and change the duration of idle time or uncheck the option so that the process is never recycled. You can also create an application pool, configure it, and use it for a selected list of web applications.














5. Change Recycle timeout period of application pool: Right click on application pool or default application, and choose Recycling tab. Change the “Recycle worker process (in minutes)” option to either change the period or disable the option by un checking. Un checking this option may be a good idea from performance point of view.

And finally there is a last one in machine.config file. But that does not affect any of these configurations and these setups take the precedence.

SQL2K8 training videos

March 23, 2009 | Leave a Comment

In the latest issue of the SQL Server Magazine, there was an attachment for some of the training videos which pointed to this site:

http://getonthecase.com

and when you go there, it is a re-direction to the ISV Innovation site:

http://www.isvinnovation.com/SQL/Default.aspx

Over there, you will get 8 different video tutorials. In case you have not gone over those yet, take a look - they are very well done and gives you a lot of very good information about the new feature sets of SQL Server 2008. These are the 8 tutorials:

1) Uncovering T-SQL on SQL Server 2008.
2) Working with unstructured data in SQL Server 2008.
3) Working with asynchronous data in SQL Server 2008.
4) Deploying managed code to SQL Server 2008.
5) Developing for SQL Server 2008 using Visual Studio.
6) SQL Server 2008 and ADO.Net Entity Framework Integration.
7) Communicating with SQL Server 2008 using HTTP.
8 ) Working with SQL Server 2008 and Disconnected Clients.

Usage of SOS.dll to measure object size

March 2, 2009 | Leave a Comment

Make sure ‘enabled managed debugging’ is checked in the project properties.

Add the directory where SOS.dll is located to the PATH environment variable,

which is in the  (C:\Windows\microsoft.net\framework\v2.0.50215)

At a breakpoint, in the immediate windows, execute :

.load sos.dll

!help  (shows a list of debugger commands)

Common ones (for looking at GridView objects as example):

!DumpHeap – type GridView

!DumpObj  0×00a8197 (or whatever address)

Recently Written

• Joel Spolsky’s talk
• JavaScript video lectures by Douglas Crockford
• Free Intro to Algorithms video lectures from MIT
• Free SE video lectures from MIT
• Free CS video lectures from Harvard
• Watch videos at higher playback speeds
• Best from Defcon 15
• .net session timeout in IIS6
• SQL2K8 training videos
• Usage of SOS.dll to measure object size

Categories

• Algorithms
• Asp.net
• C#
• Hacks
• JS/AJAX
• Lectures
• Networking
• Programming
• SQL
• Troubleshooting
• Uncategorized
• Unix
• Windows

Archives

• January 2010
• April 2009
• March 2009
• November 2008
• October 2008
• August 2008
• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007
• August 2007

My Geeky wishlist!

Blogroll

• Alik levin's
• Philip Greenspun
• Rico Mariani
• Robert Hensing
• Script Guy
• Tess

Things you may need

Copyright © 2007 iCode Inc.