2007
Another time sink-hole..
A while back some of us discovered and subsequently lost days to “The Python Challenge“. Well.. prepare to write off a little more time, and check out “Project Euler“. From its about page: ” What is Project Euler? Project Euler is a series of challenging mathematical/computer programming problems that will require more than just mathematical insights to solve. Although mathematics will help you arrive at elegant and efficient methods, the…
Amazon SimpleDB – Outsource your database??
Amazon announced the beta of Amazon SimpleDB without that much fanfare, but it is an interesting trend to watch.. Essentially amazon are giving the power of a database to people used to excel and simple queries, backed by their massively optimised infrastructure. It will make popping up a web shop even more trivial than it has been in the past, and i guess continues along the growing trend of allowing…
The coolest thing this weekend…
Ok.. so being the cautious geek i am, i had bought a mac mini a while back before jumping into the OS X waters.. Unfortunately it was probably the last PPC mac mini’s sold, which means it has limited options (unless i convert it to yellowdog or somethign of the sort). About 4 months ago i bought a (huuuuge) tv.. unfortunately i quickly figured out that the reason i never…
Rob Auger from OWASP/WASC/CGiSecurity on Timing..
Rob had a rant on his site on the timing attack, with a CSRF twist.. We met him after our Vegas talk, but im not really sure how his attack differs from our published one.. my on-list response: -snip- From: haroon meer To: bugtraq@cgisecurity.net Cc: websecurity@webappsec.org Subject: Re: [WEB SECURITY] Performing Distributed Brute Forcing of CSRF vulnerable login pages Hi Robert.. Thanks for the kind words on the talk.. If…
Casper and hidden IE windows..
OK.. so it was a long time ago, and old code is supposed to embarrass you.. but i pulled casper.exe form our webpage today to test something for the project im on.. interestingly it runs pretty ok, and actually doesnt look from the outside as ugly as it is underneath.. if you never used casper, take it for a quick spin.. if nothing else u will be suprised by how…
Dino Dai Zovi is such a Rock Star..
Dino is the guy who added much shellcode coolness to MetaSploit, gave the world Karma, released the first virtualization rootkit for Intel (Vitriol), and gave much credibility to the Matasano crowd while he was there.. Although he left the consultancy gig, he popped up briefly again during the year to claim his macbook in the Cansec Hack the Mac challenge and popped up again to break second-life.. http://www.securityevaluators.com/sl/ – -snip-…
The fine line between failure and success
So…because I don’t have a report to write this weekend I’ve had some time to ponder and reflect on stuff (and read my mail)- I thought I’d share some stuff that came to the fore of my mind again now when reading a newsletter. Since the early days of playing competitive sport (in those days it was paintball) I’ve always been astounded as to the intensity of the emotions involved…
Google as an MD5 Cracker..
Slashdot picked up on the blog post from Light Blue TouchPaper commenting on the fact that a researcher was suprised to discover that simply putting an md5 hash into google returned a hit with a mapping to the original word.. This is an interesting concept.. A while back, we decided to fiddle with the concept of using googles indexing and spidering as a new take on the time/space trade-off for…
Follow-up (OS X BSOD Win32 Icons)
Of course, Leopard’s new improved ™ finder includes an Itunes’esque “Cover Flow” view (which includes quick view thumbnailing quite impressively).. Of course, it means you get a better look at the win32 – BSOD :>
Rational vs Emotional Commitment
I’ve spoken before on how I like some of Simon T Bailey’s stuff and his general leetnesses…he has some gems… This one, on rational vs emotional commitment is quite leet and touches on a discussion we had over lunch… -snip- You might be wondering about the difference between rational and emotional commitment. Rational commitment is the “what†that you agree to give an organization when youâ€re hired: your time, talent…
Page 1 of 9
Next