Fatma Bazargan’s blog

Various # 09-102
February 1, 2009, 9:03 pm
Filed under: Security


wow, it has been a loooooong time since I updated this place, just been so packed with different stuff lately! *whola! Isn’t this stretchable any more than 24 hours a day!*


It’s going to be *wickedly* technical post today..


  • One of the greatest tools than any InfoSec expert should have in their toolset is the NMAP. Raul Siles way back had a great list of questions he asked titled “Mastering Network Monitoring and Scanning” it was all about NMAP. Recently he published the answers to it and you can have a great read about it here or on his website here or in the ISC here.  
  • For all those Penetration Testing Challenge Fans, Ed Skoudis published the Part 5 of the Santa Claus is Hacking the Town Challenge go and feed your beast J .. Once you solved it out then you can check the answers. Now, to that Raul Siles released the second version of the challenge you can find it here, so you have now two challenges to enjoy. J 
  • Ed Skoudis released recently an interesting paper titled “Secret’s of America’s Top Pentesters”, for all those interested meeting and being taught by Ed, you can attend the SANS Orlando 2009 that will be held from 01 March – 09 March. At least I know for sure I’m going to enjoy SANS Orlando this March. J  
  • For all those interested in reading the top web hacking techniques of 2008, you can read the interesting Jeremiah’s List here. Wow the list just goes on now doesn’t it! 
  • One of the news I read recently was Microsoft fixes clickjacking in IE8. For all of those out there clickjacking is a relatively new technique that was found by Jeremiah and Hansen in mid 08. Using widely available vulnerabilities to take over an end user’s browser. “The idea of clickjacking is that simply by tricking a visitor into arriving at an infected URL, an attacker can manipulate the affected end users’ browser session to get them to do just about anything the hackers desires, such as downloading malware, and at the time it was first reported publicly, there were clickjacking vulnerabilities available in just about every major browser, including IE7.”

That’s all for now.





Leave a Comment so far
Leave a comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: