BlackHat - Kaminsky's Presentation

So Dan Kaminsky gave his talk and it is as bad as we all thought.

You can grab Dan's slides from: http://www.doxpara.com under the entry named "Why So Serious".

Goes into details (104 slides!) and also talks about client attacks.

Comments

  • SlowhandSlowhand MCSE: Cloud Platform and Infrastructure, MCSA: Windows Server 2003/2012/2016, CCNA Routing & Switchi Bay Area, CaliforniaMod Posts: 5,163 Mod
    Very cool, thanks for the info.

    Free Microsoft Training: Microsoft Learn
    Free PowerShell Resources: Top PowerShell Blogs
    Free DevOps/Azure Resources: Visual Studio Dev Essentials

    Let it never be said that I didn't do the very least I could do.
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,939 Admin
    The latest Security Now! podcast talks about how DNS works and details the problem (pre-Blackhat) with DNS poisoning using non-randomized DNS ports. Dan Kaminsky will probably be interviewed on the same podcast in the next week or two. The Earthquake we had in SoCal last week occurred during the recording of the podcast and adds a little flavor.
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,939 Admin
    I just discovered that Kaminsky has a rather interesting Twitter feed: http://twitter.com/dakami
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,939 Admin
    I'm at Defcon 16 now, and it looks like Kaminsky is slated to talk at 11AM PDT on Sunday the 10th. All the presentations here are being taped and should be available in the Defcon Media Archives (and on BitTorrent) soon.
  • dynamikdynamik Banned Posts: 12,314 ■■■■■■■■□□
    JDMurray wrote:

    Oh wow! I don't want to even think about how much time I'm going to lose going through all those icon_eek.gif

    Thanks for the link and have fun out there! I'm going to try to get out there next year.
  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,939 Admin
    dynamik wrote:
    Oh wow! I don't want to even think about how much time I'm going to lose going through all those icon_eek.gif
    Tell me about it. If they post the video from every session it'll be over 125 hours in total. For professionally-produced DVDs, they are charging $899US for Defcon/Black Hat and $499 for Defcon only. I don't know when the free releases will be made.
    dynamik wrote:
    Thanks for the link and have fun out there! I'm going to try to get out there next year.
    A bunch of us need to be there next year in our TechExams.net polo's and tee's. icon_wm.gificon_cool.gif
Sign In or Register to comment.