site stats

Black Hat: 9 free security tools for defense and attacking

<!–Black Hat: 9 free Security tools for security and attacking convention target audience, 2015</p> <p></span></p> <p> Credit:<span></p> <p> Steve Marcus, Reuters<br /> </span></p> </figcaption> </figure> <section class="deck"> <h2>One Of The Vital researchers who shall be at Black Hat will exhibit how they hack and free up the tools they used to do it</h2> </section> <div class="modal eml-friend-wrapper" id="emailModal"> <div class="eml-ty eml-friend-success"> <i class="ss-icon ss-delete" /></p> <h3>Thanks</h3> <p class="msg-sent">Your message has been sent.</p> </p></div> <div class="eml-friend-error"> <i class="ss-icon ss-delete" /></p> <h3>Sorry</h3> <p class="msg-sent">There used to be an error emailing this page.</p> </p></div> </div> <section class="bodee"> <p>$(‘#” + slotName + “‘).responsiveAd(screenSize:’971 1115’, scriptTags: []);if (Object.keys(IDG.GPT.companions).length > Zero) IDG.GPT.refreshAd(‘” + slotName + “‘);”;<br /> var adDivString = “</p> <p>” + adString + “</p> <p>“;</p> <p> placementDiff = applyInsert($(this), adDivString);<br /> if (debug)<br /> console.log(“Simply placed an Advert and the placementDiff is: ” + placementDiff);</p> <p> placementTarget = cumulativeHeight + placementDiff + interModuleHeight + adHeightBuffer;</p> <p> else<br /> var moduleDivString = “”;<br /> var elementId = “drr-mod-“+moduleCounter;<br /> moduleDivString = “”;<br /> modules.push(elementId);</p> <p> placementDiff = applyInsert($(this), moduleDivString);<br /> if (debug)<br /> console.log(“Just positioned a module and the placementDiff is: ” + placementDiff);</p> <p> placementTarget = cumulativeHeight + placementDiff + interModuleHeight + moduleHeightBuffer;<br /> moduleCounter++;</p> <p> loopCounter++;</p> <p> // Keep Away From inserting Parts too quickly because of non-Huge figures inflating the cumulative Height<br /> if ($(this).is(“Determine”) && !$(this).is(“Determine.Huge”))<br /> cumulativeHeight += grafHeight;</p> <p> else<br /> cumulativeHeight += $(this).Height() + grafHeight;</p> <p> );</p> <p> // clone Associated Stories module to come in after eighth para in article physique for Cell breakpoint show<br /> var $relatedStories = $(‘.Related-promo-wrapper’);<br /> if ($relatedStories.size)<br /> var $relatedStoriesClone = $relatedStories.clone();<br /> $relatedStoriesClone.insertAfter( “#drr-container > p:eq(7)”); </p> <p> // For Cellular best, Position Advert after second paragraph.<br /> if (firstMobileAdHtml)<br /> $(firstMobileAdHtml).insertAfter(“#drr-container > p:eq(1)”);</p> <p> var $insiderPromo = $(‘.insider-promo-wrapper’);<br /> if ($insiderPromo.size)<br /> var $insiderPromoClone = $insiderPromo.clone();<br /> $insiderPromoClone.insertAfter( “#drr-container > p:eq(1)”);</p> <p> //Position left facet Component<br /> cumulativeHeight = 0;<br /> var leftPlacementTarget = tagHeight = leftPlacementTarget)<br /> if (debug)<br /> console.log(“congratulations… we’ve passed the preliminary Start level”);</p> <p> if (leftPlacementIndex == null)<br /> //it is Now Not Good sufficient to Not be a left Keep Away From – it also is not a </p> <p> with an in an instant preceding small or medium image left Keep Away From.<br /> if (!isLeftAvoid($(this)) && noPrevFigures($(this)) )<br /> leftPlacementIndex = $(this).index();<br /> $leftPlacementElement = $(this);<br /> leftPlacementLookaheadStart = cumulativeHeight;<br /> if (debug)<br /> console.log(“is just not a left Avoid and no prev figures. ########## set placementIndex (“+leftPlacementIndex+”) and lookaheadStart (“+leftPlacementLookaheadStart+”) ##########”);</p> <p> else<br /> if (debug)<br /> console.log(“is a left Steer Clear Of or has previous figures. continue”);</p> <p> else<br /> if (debug)<br /> console.log(“#### leftPlacementIndex already set to “+leftPlacementIndex+”. taking a look BEFOREHAND…”);</p> <p> //Now Not null; has been set<br /> if ((cumulativeHeight – leftPlacementLookaheadStart) > leftIntervalHeight)<br /> if (debug)<br /> console.log(“###### THRESHOLD REACHED. LOOKAHEAD FULL. Finish ###### (cumulativeHeight – leftPlacementLookaheadStart) (“+(cumulativeHeight-leftPlacementLookaheadStart)+”) > leftIntervalHeight (“+leftIntervalHeight+”).”);</p> <p> return false;<br /> else<br /> if (debug)<br /> );</p> <p> if (leftPlacementIndex != null && elementNotNearEnd($leftPlacementElement, leftPixelWindow))<br /> if (debug)<br /> console.log(” insert into index “+leftPlacementIndex);</p> <p> $(“#drr-container”).children().eq(leftPlacementIndex).earlier than(“</p> <p>“);</p> <p> IDG.GPT.trackOmniture();</p> <p> // Add Proper rail module content material<br /> for (var i=Zero; i” + adString + “</section> </article> </section> </div> <p>“;</p> <p> operate getEpoParams() report.referrer.indexOf(“bing”) >= 0)<br /> var categories = [2206, 3858, 3340, 3469];<br /> if (classes instanceof Array && classes.length > Zero)<br /> var primaryCatId = categories[0];<br /> epoParams += “&catId=” + primaryCatId + “&referrer=search”;</p> <p> else<br /> epoParams += “&typeId=” + defaultTypeId + “&referrer=residence”; // default is ‘home’ habits</p> <p> // Default is to point out like coming from homepage<br /> else </p> <p> epoParams += “&typeId=” + defaultTypeId + “&referrer=residence”;<br /> // default is ‘house’ behavior</p> <p> return epoParams;</p> <p> /**<br /> * @param jqo Unique jquery object Goal<br /> * @param divString The div to be inserted.<br /> * @return Distinction in Height between Unique placement Target and closing Goal.<br /> * Exams first 6 Components for an allowable placement (600 pixel window).<br /> * If none, Test nearby for Parts that aren’t Right avoids.<br /> * If none, Place Element earlier than current Goal.<br /> */<br /> operate applyInsert(jqo, divString)<br /> if (debug)<br /> console.log(“applyInsert at Prime and jqo index is: ” + jqo.index());</p> <p> for (var i=0; i 0)<br /> kids = $(“#drr-container”).children().slice(jqo.index(), allowElement.index() );</p> <p> else<br /> kids = $(“#drr-container”).children().slice(allowElement.index(), jqo.index());</p> <p> if (children != null)<br /> youngsters.EACH AND EVERY(function(i)<br /> if (debug)<br /> console.log(“About so as to add this Component’s Peak to heigh diff offset”);<br /> console.log($(this));</p> <p> Height += $(this).Height() + grafHeight;<br /> );</p> <p> if (offset 300)<br /> if (debug)<br /> console.log(“isRightAvoid: found pre. return proper”);</p> <p> return real;</p> <p> if (“Figure”) && jqo.hasClass(‘Huge’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered Figure.Large return actual”);</p> <p> return true;</p> <p> if (“Determine”) && jqo.hasClass(‘medium’) && jqo.hasClass(‘inline’))<br /> if (debug)<br /> console.log(“isRightAvoid: found Figure has Class medium and inline.”);</p> <p> return authentic;</p> <p> if (‘div’) && jqo.hasClass(‘Desk-wrapper’))<br /> if (debug)<br /> console.log(“isRightAvoid: found div with Classification Table-wrapper”);</p> <p> return authentic;</p> <p> if (‘apart’))<br /> if (jqo.hasClass(‘sidebar’) && !jqo.hasClass(‘medium’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered aside with Class sidebar, without Classification medium”);</p> <p> return proper;</p> <p> if (jqo.hasClass(‘statsTable’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered apart with Category statsTable”);</p> <p> return actual;</p> <p> if (jqo.hasClass(‘download-asset’))<br /> if (debug)<br /> console.log(“isRightAvoid: found Class download-asset return actual”);</p> <p> return real;</p> <p> if (jqo.hasClass(‘tableLarge’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered Class tableLarge return genuine”);</p> <p> return actual;</p> <p> if (jqo.hasClass(‘reject’))<br /> if (debug)<br /> console.log(“isRightAvoid: found Classification reject. return proper”);</p> <p> return genuine;</p> <p> if (‘Desk’) && jqo.hasClass(‘scorecard’))<br /> if (debug)<br /> console.log(“isRightAvoid: found div with Category scorecard”);</p> <p> return real;</p> <p> if (jqo.hasClass(‘product-record’)<br /> return false;</p> <p> // Return actual if Element has Category ‘reject’: won’t Position drr modules/advertisements next to those Components<br /> operate isRightReject(jqo)<br /> console.log(“in isRightReject”);<br /> if (jqo != null)<br /> if (jqo.hasClass(“reject”))<br /> if (debug)<br /> console.log(“isRightReject: found ‘reject’ Class”);</p> <p> return proper;</p> <p> return false;</p> <p> return false;</p> <p> // Returns actual if Peak of all Elements after this one is more than 500; false in any other case<br /> function elementNotNearEnd(Part, pixelWindow)<br /> if (pixelWindow == null)<br /> pixelWindow = 500;</p> <p> if (Part == null)<br /> return false;</p> <p> var remainingHeight = 0;<br /> var children = $(“#drr-container”).children().slice(Component.index());<br /> if (kids == null)<br /> return false;</p> <p> kids.EACH AND EVERY(perform(i)<br /> remainingHeight += $(this).Top();<br /> );<br /> if ( remainingHeight > pixelWindow)<br /> return real;</p> <p> else<br /> if (debug)<br /> console.log(“Element too close to Finish. Closing Peak is: ” + remainingHeight + ” and window is ” + pixelWindow); </p> <p> return false;</p> <p> /**<br /> * Return actual if want to Avoid this Component when inserting left module.<br /> */<br /> perform isLeftAvoid(jqo)<br /> if (“Figure”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found Determine. return real”);</p> <p> return genuine;</p> <p> if (“apart.pullquote”))<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered pullquote. return actual”);</p> <p> return true;</p> <p> if (“pre”))<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered pre. return actual”);</p> <p> return authentic;</p> <p> if (“div.gist”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found github code block. return authentic”);</p> <p> return genuine;</p> <p> if (“aside”) && jqo.hasClass(“sidebar”) && jqo.hasClass(“medium”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found medium sidebar. return proper”);</p> <p> return actual;</p> <p> if (jqo.hasClass(“statsTable”))<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered Category statsTable. return true”);</p> <p> return actual;</p> <p> if (jqo.hasClass(“product-sidebar”) && jqo.No Longer(“.fullwidth”).size > Zero)<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered Classification product-sidebar. return authentic”);</p> <p> return proper;</p> <p> return false;</p> <p> /**<br /> * return true if there aren’t any figures before the Target placement that would possibly bleed down into placement Element<br /> */<br /> function noPrevFigures($originalTarget)<br /> var targetIndex = $originalTarget.index();<br /> var numElementsLookBack = 5;<br /> var figureIndex = null;<br /> var figureHeight = null;<br /> var startIndex = targetIndex – numElementsLookBack </p> <div id="drr-container"> <p>When Black Hat convenes subsequent week in Las Vegas, it’s going to be a rich atmosphere for gathering instruments that can be used to tighten Safety but in addition — within the wrong hands — to hold out exploits.</p> <p>Researchers supplying normally point out the worth these releases HANG for researchers like themselves who function in experimental environments as well as for endeavor Safety pros who need to construct better defenses in opposition to such attack instruments.</p> <p>Presenters will element a vast vary of exploits they’ve carried out against Gadgets, protocols and technologies from HTTP to web of Things tools to the tactics penetration testers use to test the networks of their purchasers.</p> <p>Here’s A sampling of One Of The Most scheduled tutorial briefings coming up next week together with an outline of the free tools that will accompany them. </p> <aside class="nativo-promo smartphone" id="" /> <h3>HTTP/2 & QUIC — Educating Excellent Protocols To Do Unhealthy Things</h3> <p><em>Presenters: Carl Vincent, Sr. Security Advisor, Cisco, and Catherine (Kate) Pearce, Sr. Security Advisor, Cisco</em></p> <p>These two researchers took a have a look at HTTP/2 and QUIC, two Web protocols used to multiplex connections. The researchers say they are experiencing déjà vu as a result of they have discovered Security weaknesses in these protocols which might be reminiscent of weaknesses they discovered two years in the past in multipath TCP (MPTCP). Back then they found that because MPTCP changed paths and endpoints all over classes, it was once tough to stable the site visitors and imaginable to compromise it. “This discuss in short introduces QUIC and HTTP/2, covers multiplexing assaults past MPTCP, discusses how you need to use these tactics over QUIC and within HTTP/2, and discusses easy methods to make feel of and protect against H2/QUIC site visitors in your Network<strong>,</strong>” in step with the outline of their speak. They Say they’ll free up tools with these tactics incorporated.</p> <h3>Applied Laptop Finding Out for Data Exfil and Different Enjoyable Topics</h3> <p><em>Brian Wallace, Senior Safety Researcher, Cylance, Matt Wolff, Chief Information Scientist, Cylance, and Xuan Zhao, Knowledge Scientist, Cylance</em></p> <p>This crew Applied Laptop Finding Out to Security Data to help analysts make decisions about whether their networks are facing exact incidents. They Say missing an working out of Computer Learning can leave you at a drawback when analyzing problems. “We Will walk all the pipeline from concept to functioning Tool on several numerous Security-Related problems, together with offensive and defensive use instances for Computer Learning,” they write in describing their briefing. They plan to unencumber all of the tools, Source code and Data units they used in their Analysis. They’ll additionally embody an obfuscation Tool for Data exfiltration, a Community mapper and a command and control panel identification module.</p> <aside class="nativo-promo tablet desktop" id="" /> <h3><strong>GATTacking Bluetooth Smart Gadgets – Introducing a new BLE Proxy Device</strong></h3> <p><em> Slawomir Jasek, IT Safety Consultant, SecuRing</em></p> <p>The internet of Things is rife with Devices that make use of Bluetooth Low Power, but they do not at all times take advantage of all the security features of the expertise.<strong> “</strong>A</p> </div> <p><!-- blx4 #1218 blox4.html --></p> <div class="article-intercept"> <a href=""><br /> <i class="ss-icon ss-navigateright" /><em> From CIO:</em> 8 Free On-line Courses to Develop Your Tech Skills<br /> </a></p></div> <p> <!-- /.bodee --></p> <section id="funnel"> <section class="popular-brand-cols"> <section class="popular-col"><!-- /.promo --><br /> <!-- ./promo newsletter --></p> </section> <section class="brand-col"> </section> </section> <section class="featured-col"><!-- blx4 #937 blox4.simple --></p> </section> </section> <p> <!-- /role=main --><!-- /#page-wrapper --></p> <footer> <section class="brand"><span class="logo">InfoWorld</span><br /> <span class="tagline"> </span></p> <p> <span class="follow"><br /> <label>Apply us</label><br /> </span></p> </section> <section class="topics"> <nav id="ft1" /> <nav id="ft2" /></section> <section class="about"> </section> <section class="copyright"> <div class="wrapper"> <p>Copyright © 1994 – 2016 InfoWorld, Inc. All rights reserved.</p> <div class="network"> <div id="network-selector"> <p>Explore the IDG Community <i class="ss-icon tick">descend</i></p> </p></div> <p><!-- /#network-selector --> </div> <p><!-- /.network --> </div> <p><!-- /.wrapper --><br /> </section> </footer> <p><!-- Begin BlueKai Tag --></p> <p><!-- CryptoJS --></p> <p><!-- End BlueKai Tag --></p> <p><!-- START Nielsen Online SiteCensus? V6.0 --><br /> <!-- COPYRIGHT 2010 Nielsen Online --></p> <p><!-- END Nielsen Online SiteCensus? V6.0 --></p> <p> <!-- Begin welcome ad overlay - gpt-overlay position --></p> <p> <!-- End welcome ad overlay - gpt-overlay position --></p> <p> <!-- Begin gpt-skin/gpt-pin/inread --></p> <p> <!-- End gpt-skin/gpt-pin/inread --> </p> <p><!-- SiteCatalyst code version: H.26.2. Copyright 1996-2013 Adobe, Inc. All Rights Reserved More info available at --></p> <p><img src="" height="1" width="1" border="0" alt="" /><!--/DO NOT REMOVE/--><br /> <!-- End SiteCatalyst code version: H.26.2. --></p></div> <p><br /> <br /><a href="">Source hyperlink </a></p> <div class="clear"></div> </div><!-- /entry --> <div id="comments"> <p> You must be logged in to post a comment <a href=""> Login </a> </p> </div><!-- #comments --> </div><!-- /main --> <div id="sidebar"> <div class="sidebarinner"> </div><!-- .sidebarinner --> </div><!-- /sidebar --> </div><!-- /container --></div><!-- end of wrapper --> <div id="footer"> <div id="foo_widget1"> <div id="flickr-widget-3" class="widget flickr_widget"><div class="widgetinner"><h3 class="widgettitle">Flickr Photo Stream</h3> <script type="text/javascript" src=""></script><div class="clear"></div></div></div> </div> <div id="foo_widget2"> <div id="recent-posts-3" class="widget widget_recent_entries"><div class="widgetinner"> <h3 class="widgettitle">Recent Posts</h3> <ul> <li> <a href="">North Korea’s failed Olympians hope to avoid dangerous consequences</a> </li> <li> <a href="">Junior National Champion Jake Foster Gives Early Verbal To Texas</a> </li> <li> <a href="">Fergie reportedly didn’t think anything was wrong with her national anthem performance</a> </li> <li> <a href="">Soldiers deny membership of banned neo-Nazi group</a> </li> <li> <a href="">Carnival Cruise Line investigating its security team after violent brawl gets 23 ejected</a> </li> </ul> </div></div> </div> </div> <div id="footer_data"> <ul class="footerpages"> <li class="first"><a href="" title="Great Today News">Home</a></li> <li class="page_item page-item-6"><a href="">Privacy Policy</a></li> <li class="page_item page-item-195"><a href="">Contact Us</a></li> <li class="page_item page-item-198"><a href="">Video Gallery</a></li> <li class="page_item page-item-201"><a href="">Sitemap</a></li> <li><a rel="nofollow" href="">RSS</a></li> <li class="right"><a href="#top" title="Great Today News" rel="home"><strong>↑</strong> Great Today News</a></li> </ul> <div class="clear"></div> <p id="footer-left-side"> <a href="" title="Great Today News" rel="home">Great Today News</a> </p><!-- #site-info --> <p id="footer-right-side"> <a href="">Log in</a> - Designed by <a href="" title="Today News">Today News</a> <script type='text/javascript' src=''></script> <script type='text/javascript'> /* <![CDATA[ */ var wpcf7 = {"apiSettings":{"root":"http:\/\/\/wp-json\/contact-form-7\/v1","namespace":"contact-form-7\/v1"},"recaptcha":{"messages":{"empty":"Please verify that you are not a robot."}},"cached":"1"}; /* ]]> */ </script> <script type='text/javascript' src=''></script> <script type='text/javascript' src=''></script> </p> <!-- #footer-right-side --> </div><!-- /footer_data --> <div class="hide"> <div id="adv_here"> <h3 class="widgettitle">Widgetized Section</h3> <p>Go to Admin » appearance » Widgets » and move a widget into Advertise Widget Zone</p> </div> </div> <!-- Quantcast Tag --> <script type="text/javascript"> var _qevents = _qevents || []; (function() { var elem = document.createElement('script'); elem.src = (document.location.protocol == "https:" ? "https://secure" : "http://edge") + ""; elem.async = true; elem.type = "text/javascript"; var scpt = document.getElementsByTagName('script')[0]; scpt.parentNode.insertBefore(elem, scpt); })(); _qevents.push({ qacct:"p-XSTdT3wyH_FGD" }); </script> <noscript> <div style="display:none;"> <img src="//" border="0" height="1" width="1" alt="Quantcast"/> </div> </noscript> <!-- End Quantcast tag --> </body> </html> <!-- Performance optimized by W3 Total Cache. Learn more: Page Caching using disk: enhanced Served from: @ 2018-02-20 03:54:13 by W3 Total Cache -->