For the first session, I sat in on "Behavioral Malware Analysis Using Sandnets" by Joe Stewart from LURHQ. It's an interesting approach, using real machines (as opposed to virtual) that are instantiated via scripts and dd. It's the Internet that is virtual and before-and-after snapshots are diffed to see what the malware changed.
The "Asterisk: VoIP for the Masses" by Damin was a bit basic (for me). I went back to the arcade and took some pictures (viewable tomorrow).
For the last lecture of the day, I sat in on "The Church of Wi-Fi presents: An Evil Bastard, A Rainbow and a Great Dane!". In short, if you're using WPA-PSK, change your SSID's often and don't base 'em on dictionary words. Renderman also pointed out or demo'd a few tools that I didn't know about and am interested in experimenting with.
All in all, a good start to the con.
No comments:
Post a Comment