Software Freedom Day 2011
Saturday, September 17th was Software Freedom Day, the most important event regarding the Free Software movement. This event is held in many countries world-wide and has an importat approach to the users of these platforms, as well as Closed Software users, whether they are end-users, enterprise or government.
Argentina won't stay behind and will held the event on this saturday, September 24th at the University of Buenos Aires, Economics faculty.
All type of talks will be given about free platforms, including SugarCRM, Firefox, and many more.
From 4 PM to 6 PM (GMT-3) I will be giving a talk/workshop with Federico Pacheco about Hacking Linux, on which we will overview the different ways to take over a system and make live demonstrations.
If you're interested in participating in the workshops, you must bring a laptop with a Virtual Machine running Debian 6 installed by default. You should also brin the installation ISOs.
The image you must use is the following:
http://cdimage.debian.org/debian-cd/6.0.2.1/i386/iso-cd/debian-6.0.2.1-i386-CD-1.iso
*** CORRECTED ***
You will also need to download a copy of Damn Small Linux:
http://gd.tuwien.ac.at/opsys/linux/damnsmall/current/dsl-4.4.10.iso
*** CORRECTED ***
We will be able to take control of the system in different ways, bypassing all the controls the Operating System provides.
Event details:
- Place: Economics Faculty - UBA - Córdoba Avenue 2122
- Date: Saturday, September 24th
- Time: 10 AM - 6 PM (GMT-3)
Link to the event (Spanish):
http://wiki.softwarefreedomday.org/2011/Argentina/Ciudad%20Aut%C3%B3noma%20de%20Buenos%20Aires
See you there!!
Free Ethical Hacking Course – What Happened
On Thursday August 4th And Tuesday the 9th, 2011 I gave the Free Hands-On Ethical Hacking Course at Mkit Argentina offices.
The course was posted on several important Computer Security portals in the Spanish-Speaking communities such as Segu-Info and DragonJAR, and it was also posted on Taringa, achieving a massive broadcast.
Thanks to that, I can happily say that we reached
1700 Registrations!!! 
A true record, of which we couldn't be more proud.
People from all these countries assisted the course:
- Argentina
- Brazil
- Chile
- Uruguay
- Paraguay
- Bolivia
- Peru
- Colombia
- Venezuela
- Ecuador
- Panama
- Costa Rica
- Puerto Rico
- Nicaragua
- Honduras
- El Salvador
- Cuba
- Dominican Republic
- Mexico
- USA
- Italy
- Spain
- Portugal
From the Onsite assistants, we can underline the presence of Daniel Monastersky, attorney at law specialized in Computer Crimes and CEO of Identidadrobada, the leading community in Argentina and Latin America over issues related to Digital Identity theft.
The course lasted for 8 hours, since on the last day we extended the class 1 hour. Not only people didn't complaint, but they asked for more contents!!
During the course we covered these subjects:
- Active and Passive Reconnaissance: We showed the techniques, methods and tools needed to be able to find more information over the Internet about our target, than we could normally found.
- Vulnerability Analysis: After establishing the inclusion and coverage parameters, we conducted a vulnerability analysis about our target system, discovering the different possible exploiting and remote acces points
- Phishing: We analyzed the different possibilities to conduct this social engineering attack, finishing the lab with the creation of a 100% functional forged website in a matter of minutes.
- Man In The Middle: We explored in detail this wonderful information theft technique and were able to extract credentials from a completely unnoticed user, without raising suspicion or alert
- Exploiting: By using the perfect tools for the job, we were able to exploit system vulnerabilities on a target system, achieving remote access to it and arbitrarily manipulating it's executions
- SQL Injection and XSS: With only the help of a Web Browser we were able to manipulate the orders that a Web application sends to a Database, managing to extract critical access information and opening access tunnels that allowed us to include information into the host Web Server, finishing the attack with a Full Defacement
The course was fantastic, assistants from all over the world were very happy and the concepts delivered arrived to the audience with an excellent level of acceptance.
And of course, it was quite fun!!
Without doubts it was an excellent event, and we will soon do it again.
Here are some pictures of the event:
See you at the next one!!
Bye!
DEFCON 19 Presentations
As you all should know already, Defcon 19, the biggest Hacking conference in the world, has ended a few days ago.
Luckily for those of us who didn't go, here are the event presentations, so we can study them. There are almost 600 MBs of presentations, which will give us a long time reading
Link: http://good.net/dl/k4r3lj/DEFCON19/
There's only one simultaneous download per IP. Patience
Bye!
Free Malware and Cybercrime lecture (Onsite and Online)
Keeping up with the series of Free Computer Security Courses, Cristian Borghello (Director of the Segu-Info community) will give a free lecture about Malware y cibercrimen at the offices of Mkit Argentina, presenting the Full course that will start on August 24th
The lecture will take place next monday, August 15th, from 6:30 PM to 8:30 PM ( GMT -3, Argentina) with both Onsite and Online attendance.
- To attend in Online mode you can enter 30 minutes before the start of the lecture. In that link there's a "LiveMeeting waiting lobby" and when the event starts you will automatically enter the event.
- To attend in Onsite mode at the City of Buenos Aires, since seating is limited, you must pre-register by sending and email to cursos[AT]segu-info.com.ar. There you will find out how to access the lecture.
To view the event Online you will need a LiveMeeting Plugin (Windows Installer) that I recommend having installed before the event starts. If you use Mac/OS or Linux you must install JAVA JRE 1.6 and when you access the event you will be able to install Office Live Meeting Web Access and access without problems.
Besides, we're riffling half a scholarship for those who win the challenge published in the 175th Segu-Info Newsletter.
Source: Segu-Info
Free Hands-On Ethical Hacking Course (Onsite and Online)
Just like we did in April, this time we again launch with Mkit Argentina a Free Ethical Hacking course.
Unlike last time, this time there will be a 2-day course and will include new topics!
I must underline that when I say hands-on.....I mean HANDS-ON
Instead of just simply see the teacher demonstrating, you will be able to do the practice with your own computer. When you register for the course you will receive information regarding pre-requisites (virtual machines, tools, etc) to be able to do the practices.
Agenda:
- Internet hacking:
- Active and Passive Reconnaissance
- Vulnerability Scanning
- Network Hacking
- Phishing
- Man-In-The-Middle
- Application Hacking:
- Exploiting
- SQL Injection y XSS
- Is it free?: Of course!
- Fecha y hora: Martes 5 de Abril de 2011, de 18:30 a 21:30 hs (GMT-3, hora de Buenos Aires)
- Where will it be?: Mkit Argentina, City of Buenos Aires. Limited seatings for Onsite assistants
- Will it be streamed?: Yes, but there are also limited seatings for Online assistants
- Will you give certificates?: Yes, printed for Onsite assistants and Digital for Online Assistants
- Will I really learn something?: Definitely!!! This is a TRULY hands-on course and like the popular voice says, "you learn by braking"
Those who are interested Los interesados (I hope there are many of you!!) must register at the following link:
http://www.mkit.com.ar/cursogratuito/
See you there!!
Tags
Recent Posts
- Online Nmap Scanner – Scan your network quick and easily
- What’s my IP Address?
- Denial of Service to a Sony Bravia IP TV
- CXO Community – V Identity Management in the Digital Era Conference
- Lock – A simple Linux console locking tool
Archives
- April 2012 (3)
- March 2012 (2)
- February 2012 (1)
- January 2012 (1)
- October 2011 (11)
- September 2011 (13)
- August 2011 (5)
- July 2011 (7)
- June 2011 (8)
- May 2011 (3)
- April 2011 (7)
- March 2011 (2)
- February 2011 (2)
- December 2010 (2)
- November 2010 (5)
- October 2010 (3)
- September 2010 (6)
- August 2010 (3)
- June 2010 (4)
- May 2010 (3)
- April 2010 (3)
- March 2010 (2)
- February 2010 (6)
- January 2010 (16)
- December 2009 (6)
- November 2009 (2)
- October 2009 (7)
- September 2009 (12)
- August 2009 (4)
- July 2009 (4)
- June 2009 (4)
- May 2009 (4)