Courses:

Offensive Countermeasures: The Art Of Active Defense: SANSFIRE June 15-16, Blackhat USA July 27-28 & 29-30


Defensive Countermeasures: Foundations for Becoming A Devious Defender: Blackhat USA July 27-28 & 29-30


Conferences:

Check out the entire PaulDotCom crew at BsidesRI June 14-15th!



Subscribe:

Blog:
Videos:
Podcast:


PaulDotCom EspaƱol


Hack Naked TV


Hack Naked At Night


Stogie Geeks


Sponsored By:


www.coresecurity.com


www.tenablesecurity.com


www.sans.org



Follow Us On:


twitter.com/pauldotcom

PaulDotCom YouTube Channel


PaulDotCom Enterprises

Paul Asadoorian | Larry Pesce | John Strand

| Mick Douglas

| "Best of..." Webcast Series

"Best of ..." Webcast Series


  • Best Of Network Penetration Testing Tools - January 2009 pdf - January 2009, Whitehatworld Monthly Webcast with Paul Asadoorian, Larry Pesce, & John Strand. Topics: Nmap, Nessus,Metasploit, Pass-the-Hash, Hydra, Cain & Able, Core Impact

  • Best Of Web Application Penetration Testing Tools - April 2009 pdf - April 2009, Whitehatworld Monthly Webcast with Paul Asadoorian, Mick Douglas, & John Strand. Topics: Nikto, Webscarab, w3af, Firefox (Firebug, YSlow, TestGen4Web), Cenzic Hailstorm, Core IMPACT, Inguardians' Samurai

    • Paul Asadoorian


    • Zen & The Art Of An Internal Penetration Testing Program - June 2009 pdf -June 2009, Penetration Testing & Web Application Attacks Summit, Vegas

    • Zen & The Art Of An Internal Penetration Testing Program - Part II - April 2009 pdf - April 2009, Core Security Technologies Webcast. Topics: Tips and tools for Exploitation, Post-Exploitation, Reporting phases

    • Late Breaking Computer Attack Vectors - December 2008 pdf - December 2008, Whitehatworld Monthly Webcast. Topics: BotNet defense[Snort, ShadowServer.net], Top 5 Defensive Recommendations

    • Zen & The Art Of An Internal Penetration Testing Program - Part I - November 2008 pdf - November 2008, Core Security Technologies Webcast. Topics: Target Identification tools, Detecting hosts/services, Identifying Vulnerabilities

    • Late Breaking Computer Attack Vectors - October 2008 pdf - October 2008, Whitehatworld Monthly Webcast. Topics: MS08-067, autopwning, Keystroke recording research, By-passing AV

    • Late Breaking Computer Attack Vectors - September 2008 pdf - September 2008, Whitehatworld Monthly Webcast Topics: Nmap parsing, Botnet/SQL injection defense, Anti-theft tips

    • Late Breaking Computer Attack Vectors - August 2008 pdf - August 2008, Whitehatworld Monthly Webcast Topics: Post-exploit defense, Nmap research results, Social Network Defense

    • Late Breaking Computer Attack Vectors - July 2008 pdf - July 2008, Whitehatworld Monthly Webcast Topics: Securing OS X, Karma, Terry Childs case

    • Late Breaking Computer Attack Vectors - June 2008 pdf - June 2008, Whitehatworld Monthly Webcast Topics: IDS/IPS, Cisco Rootkits, VZN Business Data Report

    • Late Breaking Computer Attack Vectors - April 2008 pdf - April 2008, Whitehatworld Monthly Webcast Topics: Kiosk insecurity, Inside != Secure, Hacking desks, Auth Bypass, Daknets

    • Late Breaking Computer Attack Vectors - March 2008 pdf - March 2008, Whitehatworld Monthly Webcast Topics: Social Network Defense, Sneakernet Defense

    • Late Breaking Computer Attack Vectors - February 2008 pdf - February 2008, Whitehatworld Monthly Webcast Topics:Vendor shipped vulnerabilities, Security process management

    • Things That Go Bump In The Network - Embedded Device (In)Security pdf - January 2008 SANS New Orleans/SANS Webcast/REN-ISAC Webcast

    • Wireless Network Security - March 2006 pdf - March 2006, , Providence, RI

    • Vulnerability Summary - October 2005 pdf - October 2005, OSHEAN Shore Patrol Meeting

    • Paul's Top Ten Security Tips Courseware, Version 3.3 (Updated 07/2005) pdf - July 2005 - Brown University

    • Paul's Top Ten Security Tips Handout, Version 3.3 (Updated 07/2005) pdf - July 2005 - Brown University

    • Buying and Securing Your Computer - June 2005 pdf - June 2005, Brown University Staff Development Day

    • Buying and Securing Your Computer Handout - June 2005 pdf - June 2005, Brown University Staff Development Day

    • Vulnerability Summary - March 2005 pdf - March 2005, Brown University SysAdmin Group

    • Vulnerability Summary - January 2005 pdf - January 2005, Brown University SysAdmin Group

    • Vulnerability Summary - November/December 2004 pdf - December 2004, Brown University SysAdmin Group

    • Vulnerability Summary - October 2004 pdf - October 2004, Brown University SysAdmin Group

    • Paul's Top Ten Security Tips Courseware, Version 2.0 pdf - September 2004 - Brown University, February 2005 - ISACA New England Chapter

    • Vulnerability Summary - September 2004 pdf - September 2004, Brown University SysAdmin Group

    • 3 Easy Steps To A Spyware-Free Computer pdf - September 2004, Brown University

    • Vulnerability Summary - August 2004 pdf - August 2004, Brown University SysAdmin Group

    • IE: Internet Exposure - Internet Explorer Vulnerabilities and What You Can do About Them pdf - OSHEAN Shore Patrol Meeting, July 8, 2004

    • Vulnerability Summary - June 2004 pdf - June 2004, Distributed Electronically to Brown Sysadmin Group presented at OSHEAN Shore Patrol Meeting, July 8, 2004

    • Buying and Securing Your Home Computer - June 2004 pdf - June 2004, Brown University Staff Development Day

    • Vulnerability Summary - May 2004 pdf - May 2004, Brown University SysAdmin Group

    • Vulnerability Summary - March 2004 pdf - March 2004, Brown University SysAdmin Group

    • Vulnerability Summary - February 2004 pdf - February 2004, Brown University SysAdmin Group

    • Vulnerability Summary - January 2004 pdf - January 2004, Brown University SysAdmin Group

    • Vulnerability Summary - October 2003 pdf - October 2003, Brown University SysAdmin Group

    • Automated Patching pdf - September 2003, Brown University SysAdmin Group

    • Vulnerability Summary - September 2003 pdf - September 2003, Brown University SysAdmin Group

    • #Owning Academia - Attacking and Exploiting University Networks pdf - September 22 2003, IVY+ Security Group Meeting, Brown University

    • Fun With Wireless and Firewalls pdf - August 19 2003, MIT Security Camp

    • Vulnerability Summary - June 2003 MISSING! Sorry... - June 2003, Brown University SysAdmin Group

    • Vulnerability Analysis Using Nessus pdf |html - May 2003, ISACA New England Chapter

    • Vulnerability Summary - April 2003 pdf |html - April 2003, Brown University SysAdmin Group

    • Firewall Tips & Tricks pdf | html- November 2002, Brown University SysAdmin Group

    • Adventures In Incident Handling pdf |html - August 2002, MIT Security Camp

    • Securing Microsoft IIS pdf |html - February 2002, Brown University SysAdmin Group

    • Introduction to IPsec pdf |html - July 2001, Brown University SysAdmin Group

    • Buffer Overflows - The TSIG Example pdf| html - May 2001, Follow-up presentation to the TSIG paper

      • Larry Pesce

      • P2P Information Disclosure pdf -June 2009, PenTest Summit '09, Vegas

      • Where to now? An adventure in GPS tracking pdf -March 2009, SANS NS2009 Orlando

      • Document Metadata, the Silent Killer pdf -SANS NS2009 Orlando, Updated with even more content

      • Late Breaking Computer Attack Vectors - January 2009 pdf -January 2009, Whitehatworld Monthly Webcast Topics: Cisco IOS Attacks, THC-Hydra, Twitter Password fail

      • Late Breaking Computer Attack Vectors - November 2008 pdf - November 2008, Whitehatworld Monthly Webcast Topics: PDF & Javascript, Metasploit 3.2 updates, EXIFtool, WPA/TKIP cracking

      • Late Breaking Computer Attack Vectors - May 2008 pdf - May 2008, Whitehatworld Monthly Webcast Topics: iPhone wipes, Trenchcoat Phlasher

      • Document Metadata, the Silent Killer pdf - April 2008, OSHEAN Shore Patrol, DEFCON 16

      • Hiding Rogue APs for "Penetration Testers" - a tongue in cheek, soldering iron in hand look at hiding rogues pdf - June 2008, SANS Pen-test Summit, Shmoocon 4, DEFCON 15 Wireless Village, DEFCON 16

        • John Strand


        • Late Breaking Computer Attack Vectors - February 2009 pdf - February 2009, Whitehatworld Monthly Webcast

          • Mick Douglas


          • Late Breaking Computer Attack Vectors - March 2009 pdf - March 2009, Whitehatworld Monthly Webcast Topics: Rogue DHCP server malware, DLP 101, L0phtcrack 6