Anyone from Mid-A interested in getting together , using some tools and sharing some knowledge? I started a thread in the "computer" section here: IT Security Link Any experience with things like Snort,Dragon,Manhunt, ISS, TCPDump, Ethereal, Nessus, etc.... All experience levels welcome!

 

This is actually a really cool idea. There are lots of young professionals on here who might like to show off their skills. I think I'd like to be present if I'm in town.

 

I think it will give everyone a chance to get more hands on experience from people in the field. We will see if anyone is interested...hopefully

 

If we teach you then we have to kill you.

 

Good Links: http://iase.disa.mil/stigs/SRR/index.html

 

Anyone here work in IT Security? Any experience writing virus signatures? Writing exploits? What OS do you like/prefer to use?

Kill or be killed! Muahahahah!! J/K I have used a wide range of tools and I am just looking for some people who are interested in that kind of stuff. I have written a packet sniffer and network scanner so I think it is time to really put them to the test.

 

I think I'm confused by what level of security you are talking about.

Are you talking about the ease that someone can infect your network with a virus or access information or gain control of some sort? What kind of networks are you talking about here?

 

Any IP based network. Wireless or wired. Keep in mind I am not talking about being a script kiddie. Anyone can download some software and try to launch an attack. I am talking about real packet analysis, writing virus signatures, intrusion detection etc... For example below is a packet that I captured off of a network with tcpdump...Everythinig you need to know about the traffic is there. Source IP, Destination IP, MAC address etc... Can you see what they are? Can you tell what type of IP packet it is (TCP, UDP or ICMP)? FYI its one full ethernet packet so once you know how you would be able to look at this and decode it with little trouble. You also would be able to tell if there was someone trying to do something fishy also I will give some hints later ....

00 12 3f 60 16 21 00 03 47 e1 27 74 08 00 45 00
00 3c 18 e8 00 00 ff 01 48 65 ac 11 01 01 ac 11
01 50 00 00 59 5b 03 00 f9 00 61 62 63 64 65 66
67 68 69 6a 6b 6c 6d 6e 6f 70 71 72 73 74 75 76
77 61 62 63 64 65 66 67 68 69

 

I'd be interested; however, only if we sharing knowledge on how to strengthen our networks/servers/etc. If you're looking for info on a better way to script or hack, I'm not your man ... anymore.

 

Na. I aint looking for ways to script or hack. J/K This wouldnt be the place for that anyway. Its all aimed at learning. How are you going to learn how to strengthen your network or servers? How do you learn what you are vulnerable to? By Penetration Testing and baselining. Trust me...you will want to test, find and fix your network holes before someone else finds them for you! I am just trying to see whos interested since we all live in a very high tech part of the the country.