This is the 17th episode of the Security Justice podcast recorded September 16th 2009 live at Mavis Winkle’s Irish Pub. This episode was hosted by Tom, Matt, Dave and Chris with special guests Tony Macisco and much0mas. Music provided by dualCORE and Pokens provided by PokenZoo.com. Did you know we have a Facebook Fan Page? We promise it’s non malicious! Thanks to everyone listening to the live stream and for participating in the chat via IRC.
We will be podcasting at the Ohio Linux Fest with dualCORE! September 25-27th. Dave and Chris will be streaming live on Saturday 9/26 and dualCORE will be performing live Saturday night. Stay tuned to our website and Twitter feed for more information this weekend.
Cleveland Locksport is forming! If your local to the Cleveland area, hit up Chris for information on the next meeting.
If you near the Cleveland, Ohio area check out the Information Security Summit October 29-30
MiniSoOnCon! MiniSoOnCon is a Southern Ontario Hackerspaces / Makers Mini-Conference October 2nd and 3rd, 2009 in Hamilton, Ontario.
Website Plug(s) of the Month:
Social Engineering Framework
Learn all about social engineering! Put together by an awesome crew including Dave Kennedy who is the creator of the Social Engineer Toolkit (SET). Check it out! Really good stuff! http://social-engineer.org/
Malwarebytes is a site dedicated to fighting malware. Malwarebytes has developed a variety of tools that can identify and remove malicious software from your computer.
Here are the topics covered and show notes:
- Interview with Tony Macisco who is a physical security expert. He has a impressive resume working for the Department of Homeland Security. US Customs and a large financial institution. If your looking for someone that knows physical security, Tony is your man. Connect with him on LinkedIn!
- Matt talks about cracking passwords with CUDA video cards and why cracking passwords with video cards is incredibly faster then traditional methods. CUDA FTW!
- Want to crack passwords with a CUDA supported card? Check out Pyrit which allows you to create massive databases, pre-computing part of the WPA/WPA2-PSK authentication phase in a space-time-tradeoff. Pyrit also hooks into CoWPAtty. If you want to brute force MD4/MD5 or NTLM check out CUDA Multiforcer (noted as the worlds fastest password cracker). If you want a setup for CUDA that works out of the box, check out Backtrack 4…CUDA support is built in!
- Sharing files on a social network might be the end of the world
- POKENS. What are they? Are they secure? Will they catch on? We have some Pokens for prizes thanks to PokenZoo.com! See Dave or Chris at Ohio Linux Fest this weekend to find out how to win one! Congrats to Paul from PaulDotCom Security Weekly for winning a Poken during our live show!
- Want to know how Pokens work and related security? Check out this really awesome, detailed article created by Didier Stevens.
- Did you know we have a t-shirt design contest? Neither did we! Send your ideas to feedback[aT]securityjustice.com and you could win a Poken and MORE! (we just don’t know what “more” is yet)
- What is a Makerbot? We have a good discussion about basic hardware hacking and hackerspaces…we also wonder why we still don’t have one in Cleveland..<sigh>
- Go to MiniSoOnCon! It’s only a 3.5 hour drive from Cleveland.
- Ignore the “hawt chick” on the Security Justice Twitter account (and the base64 encoded messages). We are not part of a Twitter botnet! Srsly.
Please send show feedback to feedback [aT] securityjustice.com or comment below. Thanks for listening!