Welcome!

PHP Authors: Liz McMillan, Carmen Gonzalez, Hovhannes Avoyan, Lori MacVittie, Trevor Parsons

Related Topics: PHP

PHP: Blog Feed Post

Living at Shmoocon

The conference itself was a great time

Well, I'm in Washington DC following the aftermath of Shmoocon 2010. Despite me being an avid security/hacker con goer, this was my first.

Let me start by saying that "aftermath" is no exaggeration. Between the 24+ inches of snow and the crazy antics one can only find at a hacker convention, aftermath may even be a weak term. Due to the snow, the city shut down... all forms of life ceased to exist and the president was driving a monster truck around town. Okay, not really, but me and my fellow Americans have been stuck in the hotel and DC for the past 3 days with basically no place to go.

The conference itself was a great time. I always enjoy meeting a bunch of different people, and seeing familiar faces from other cons like DEFCON, which I try to attend as much as possible since first speaking there in 2007.

On to some more technical stuff... in my opinion the most exciting application to come out of Shmoocon this year was Airdrop-ng. Airdrop-ng will be becoming another part of the Aircrack-ng suite of tools. It's purpose is to deauthenticate clients from wireless access points. Not only will it deauthenticate them, it will also keep them deauth'd

And the cool part about the whole thing was the ability to write rules on what to deny/allow access to. I think it will be a great tool and will be useful in penetration test type scenarios where rogue access points are in the scope of exploitation.

Some other talks I really enjoyed were the FireTalks. 15 minute blurb type talks that get down to the point of the talk and just the details - my favorite. Two that stuck out were the Social Engineering Toolkit presentation by Dave Kennedy and the SHODAN for Penetration Testers talk by Michael Schearer. The Social Engineering Toolkit is basically a tool that will assist in Social Engineering type attacks - phishing, e-mails, etc.. SHODAN is a machine search engine - it fingerprints headers from millions of IPs and puts them in a database for searching. Both of these tools are very useful and fun to toy around with. I would recommend picking up these slides after they've been published.

In closing, I also picked up some physical hacking skills when I was here and honed my lockpicking skills a bit.
Overall a great time and something I will look forward to returning to. Hopefully with less snow.

Speaking of less snow... I hope I can get out of DC sometime today...

Read the original blog entry...

More Stories By Hurricane Labs

Christina O’Neill has been working in the information security field for 3 years. She is a board member for the Northern Ohio InfraGard Members Alliance and a committee member for the Information Security Summit, a conference held once a year for information security and physical security professionals.

IoT & Smart Cities Stories
The platform combines the strengths of Singtel's extensive, intelligent network capabilities with Microsoft's cloud expertise to create a unique solution that sets new standards for IoT applications," said Mr Diomedes Kastanis, Head of IoT at Singtel. "Our solution provides speed, transparency and flexibility, paving the way for a more pervasive use of IoT to accelerate enterprises' digitalisation efforts. AI-powered intelligent connectivity over Microsoft Azure will be the fastest connected pat...
There are many examples of disruption in consumer space – Uber disrupting the cab industry, Airbnb disrupting the hospitality industry and so on; but have you wondered who is disrupting support and operations? AISERA helps make businesses and customers successful by offering consumer-like user experience for support and operations. We have built the world’s first AI-driven IT / HR / Cloud / Customer Support and Operations solution.
Codete accelerates their clients growth through technological expertise and experience. Codite team works with organizations to meet the challenges that digitalization presents. Their clients include digital start-ups as well as established enterprises in the IT industry. To stay competitive in a highly innovative IT industry, strong R&D departments and bold spin-off initiatives is a must. Codete Data Science and Software Architects teams help corporate clients to stay up to date with the mod...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
Druva is the global leader in Cloud Data Protection and Management, delivering the industry's first data management-as-a-service solution that aggregates data from endpoints, servers and cloud applications and leverages the public cloud to offer a single pane of glass to enable data protection, governance and intelligence-dramatically increasing the availability and visibility of business critical information, while reducing the risk, cost and complexity of managing and protecting it. Druva's...
BMC has unmatched experience in IT management, supporting 92 of the Forbes Global 100, and earning recognition as an ITSM Gartner Magic Quadrant Leader for five years running. Our solutions offer speed, agility, and efficiency to tackle business challenges in the areas of service management, automation, operations, and the mainframe.
The Jevons Paradox suggests that when technological advances increase efficiency of a resource, it results in an overall increase in consumption. Writing on the increased use of coal as a result of technological improvements, 19th-century economist William Stanley Jevons found that these improvements led to the development of new ways to utilize coal. In his session at 19th Cloud Expo, Mark Thiele, Chief Strategy Officer for Apcera, compared the Jevons Paradox to modern-day enterprise IT, examin...
With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
DSR is a supplier of project management, consultancy services and IT solutions that increase effectiveness of a company's operations in the production sector. The company combines in-depth knowledge of international companies with expert knowledge utilising IT tools that support manufacturing and distribution processes. DSR ensures optimization and integration of internal processes which is necessary for companies to grow rapidly. The rapid growth is possible thanks, to specialized services an...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...