Null + OWASP + SecurityXploded + Garage4hackers Meet at Bangalore

1. Null / OWASP / SecurityXploded / Garage4hackers Meetup About me: Ashwin Patil GCIH, RHCE, CCNA 2+ in Infosec

5. Accused of using SQL injection attacks against Sony.

6. Earlier in UK : 2 more arrests happened claimed to be Kayla and Topiarry.

7. Ringleader Sabu tweeted only 2 left.

8. Group chatlog revealed use of HideMyAss`s Proxy service to disguise his IP in SONY attack.

10. We only log time you connect and disconnect.

11. We comply with UK Law. If request for information came from overseas ,it should come from UK channels only-- arstechnica, hidemyass blogs

13. Presented New Fast block-wise chosen plaintext attack against AES algorithm in SSL/TLS.

15. P.O.C. Application : BEAST : Browser Exploit Against SSL/TLS -- theregister, threatpost

17. Injects client side BEAST code in victims browser. (iframe/JavaScript)

19. Firefox considering to disable java but it will break many websites and functionalities

20. Microsoft working on Windows Update to fix the issue. Advisory: 2588513 -- technet , chrome, mozilla blogs

25. Estimated 41000 compromised hosts, capable of sending 3.8 billion spam messages

27. Chrome also released update to fix the issue

28. Microsoft is joining anti-flash crowd.

29. Metro version of IE 10 in windows 8 will not accommodate plugins.-- arstechnica, threatpost , chrome, cnet blogs

33. installing new hardware with unsigned keys drivers-- msdn blogs, cnet ,

36. IIS could also be vulnerable if it is importing apache mod_rewrite rules.-- contextis.com blog, seclists.org full disclosure

38. Reverse engineered and analyzed by European Chaos Computer Club (CCC). Submitted to ccc anonymously

39. Used by German police forces.

41. Attackers used large amount of data obtained from compromised lists of other companies

42. Claims credit card information is not at risk-- ccc.de , PlayStation blogs

45. App collects all kinds of data and provides to anyone who asks by opening a local port

46. Any app with INTERNET permission can access the information and can send data to remote server.

47. Patch Promised by HTC ..will be firmware OTA update.

48. Till then if you are rooted, remove HtcLogger.apk -- h-online, androidpolice, allthingsd.com

50. ANDROIDOS_ANSERVER.A : arrives as a eBook reader app and Uses encrypted blog posts as C & C.

51. New Zeus Crimeware toolkit comes with peer-to-peer design.

52. Harder to takedown such botnets as No centralized C & C server which they can infiltrate or shut down.

53. AmEx Debug Mode left site wide open, providing access to vulnerable debug tools

54. Security Issue was noticed by developer Niklas Fermerstand.

55. Difficulties in finding security contact when contacted via twitter.

56. AmEx responded and shut down debug mode

57. Facebook is partnering with Websense to protect its members from malware and malicious web sites.

58. When Facebook user clicks on a link, it will be checked against Websense database.

59. if links is malicious, user will be presented a choice to continue or not on his risk.--theregister, qnrq.se, TrendMicro, bbc. networkworld, fnno.com

61. Malware Analyzer 3.5:Malware Analyzer is freeware tool to perform static and dynamic analysis on malwares

62. ExeScan : PE File Anomaly Detector Tool by SecurityXploded

63. Another File Integrity Checker 2.18: another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms

64. WebCookiesSniffer: Packet sniffer tool displays all cookies in a simple Table form.

65. fbpwn: A cross-platform Java based Facebook social engineering framework

66. Zscaler Like Jacking Prevention:Plugin for browser to keep users safe from Facebook scams.

67. PuttyHijackV1.0.rar: POC Tool to hijack putty sessions by injecting dll in process.

68. Websecurify :Powerful, cross-platform web security testing technology

69. owasp-wte: OWASP Web Testing Environment.

71. Best Practices for reporting Badware URLs

72. Post Exploitation Command Lists for Win, Unix, OS X: Excellent Reference for post exploitations

73. This Python has Venom: Symantec blog covering python Trojan

74. Cracking Passwords Version 1.1

75. Busting Windows in Backtrack 5 : Armitage demo in Backtrack 5

76. Evading Antimalware Engines via Assembly Ghostwriting

77. Bypassing Windows 7 Kernel ASLR