Free Courses and Wargame in March
Mkit Argentina is back with everything in 2012!!
Here are the best IT Security events in March:
GratuitoFree Computer Forensics Course
In this course the attendees will learn the secrets of virtualization in forensic environments, for investigation and results presentations.
Speaker: Ing. Gustavo Daniel Presman -CCE - EnCE - FCA - NPFA - EnCI 
Date
Thursday, March 15th, 2012, from 6:30 pm until 9:30 pm (GMT-3, Argentina)
Signup and more information: http://www.mkit.com.ar/eventos/forense/
Free Ethical Hacking Course
In this course we will cover the hottest Hacking techniques, by performing them in a practical lab
Topics
|
Speaker:
Dates
March Tuesday 6th and Thursday 8th, 2012, from 6:30 pm until 10 pm (GMT-3, Argentina)
Signup and more information: http://www.mkit.com.ar/eventos/hacking/
Wargame Extreme!!
The first WARGAME EXTREME of the year comes to Mkit Argentina!!
Test your Hacking knowledge in this amazing computer challenge!!
Have fun discovering the access path and reach the final objective!!
Date
Friday March 2nd, 2012, from 6:30 pm until 10 pm (GMT-3, Argentina)
Signup and more information: http://www.mkit.com.ar/eventos/wargame/
See you there!!
Source: Mkit Argentina Blog
Hack x Colombia – What Happened
As I told you a few weeks ago, I've just finished my talk at the Hack X Colombia community event, which took place in Bogotá and Medellín.
On this talk, I spoke about the typical Web security attacks, including SQL Injection and Cross-Site Scripting (XSS). Unfortunately, because of timing issues I wasn't able to finish the talk, and were only able to speak about the first subject.
However, the talk was carried on perfectly fine and the people received me wonderfully.
I'd like to thank the event organization for allowing me to participate, and all of the assistants for staying during my talk.
For those of you who wish to see the talk, here is the link:
https://mkit.webex.com/mkit/ldr.php?AT=pb&SP=MC&rID=96630287&rKey=e0643df9e3428292
You'll have to install the WebEx Client, at the following link: http://www.webex.com/play-webex-recording.html
Here is the PDF presentation of the talk (Spanish): Hack_X_Colombia_-_Seguridad_Web
See you next time!
Software Freedom Day 2011
Saturday, September 17th was Software Freedom Day, the most important event regarding the Free Software movement. This event is held in many countries world-wide and has an importat approach to the users of these platforms, as well as Closed Software users, whether they are end-users, enterprise or government.
Argentina won't stay behind and will held the event on this saturday, September 24th at the University of Buenos Aires, Economics faculty.
All type of talks will be given about free platforms, including SugarCRM, Firefox, and many more.
From 4 PM to 6 PM (GMT-3) I will be giving a talk/workshop with Federico Pacheco about Hacking Linux, on which we will overview the different ways to take over a system and make live demonstrations.
If you're interested in participating in the workshops, you must bring a laptop with a Virtual Machine running Debian 6 installed by default. You should also brin the installation ISOs.
The image you must use is the following:
http://cdimage.debian.org/debian-cd/6.0.2.1/i386/iso-cd/debian-6.0.2.1-i386-CD-1.iso
*** CORRECTED ***
You will also need to download a copy of Damn Small Linux:
http://gd.tuwien.ac.at/opsys/linux/damnsmall/current/dsl-4.4.10.iso
*** CORRECTED ***
We will be able to take control of the system in different ways, bypassing all the controls the Operating System provides.
Event details:
- Place: Economics Faculty - UBA - Córdoba Avenue 2122
- Date: Saturday, September 24th
- Time: 10 AM - 6 PM (GMT-3)
Link to the event (Spanish):
http://wiki.softwarefreedomday.org/2011/Argentina/Ciudad%20Aut%C3%B3noma%20de%20Buenos%20Aires
See you there!!
Free Ethical Hacking Course – What Happened
On Thursday August 4th And Tuesday the 9th, 2011 I gave the Free Hands-On Ethical Hacking Course at Mkit Argentina offices.
The course was posted on several important Computer Security portals in the Spanish-Speaking communities such as Segu-Info and DragonJAR, and it was also posted on Taringa, achieving a massive broadcast.
Thanks to that, I can happily say that we reached
1700 Registrations!!! 
A true record, of which we couldn't be more proud.
People from all these countries assisted the course:
- Argentina
- Brazil
- Chile
- Uruguay
- Paraguay
- Bolivia
- Peru
- Colombia
- Venezuela
- Ecuador
- Panama
- Costa Rica
- Puerto Rico
- Nicaragua
- Honduras
- El Salvador
- Cuba
- Dominican Republic
- Mexico
- USA
- Italy
- Spain
- Portugal
From the Onsite assistants, we can underline the presence of Daniel Monastersky, attorney at law specialized in Computer Crimes and CEO of Identidadrobada, the leading community in Argentina and Latin America over issues related to Digital Identity theft.
The course lasted for 8 hours, since on the last day we extended the class 1 hour. Not only people didn't complaint, but they asked for more contents!!
During the course we covered these subjects:
- Active and Passive Reconnaissance: We showed the techniques, methods and tools needed to be able to find more information over the Internet about our target, than we could normally found.
- Vulnerability Analysis: After establishing the inclusion and coverage parameters, we conducted a vulnerability analysis about our target system, discovering the different possible exploiting and remote acces points
- Phishing: We analyzed the different possibilities to conduct this social engineering attack, finishing the lab with the creation of a 100% functional forged website in a matter of minutes.
- Man In The Middle: We explored in detail this wonderful information theft technique and were able to extract credentials from a completely unnoticed user, without raising suspicion or alert
- Exploiting: By using the perfect tools for the job, we were able to exploit system vulnerabilities on a target system, achieving remote access to it and arbitrarily manipulating it's executions
- SQL Injection and XSS: With only the help of a Web Browser we were able to manipulate the orders that a Web application sends to a Database, managing to extract critical access information and opening access tunnels that allowed us to include information into the host Web Server, finishing the attack with a Full Defacement
The course was fantastic, assistants from all over the world were very happy and the concepts delivered arrived to the audience with an excellent level of acceptance.
And of course, it was quite fun!!
Without doubts it was an excellent event, and we will soon do it again.
Here are some pictures of the event:
See you at the next one!!
Bye!
DEFCON 19 Presentations
As you all should know already, Defcon 19, the biggest Hacking conference in the world, has ended a few days ago.
Luckily for those of us who didn't go, here are the event presentations, so we can study them. There are almost 600 MBs of presentations, which will give us a long time reading
Link: http://good.net/dl/k4r3lj/DEFCON19/
There's only one simultaneous download per IP. Patience
Bye!
Tags
Recent Posts
- ACK Security Conference – Manizales, Colombia
- Free Courses and Wargame in March
- Facebook or SET ?
- Facebook Simplifies Phishing Attacks
- Information Security Incident Treatment – First Part
Archives
- February 2012 (1)
- January 2012 (1)
- October 2011 (13)
- September 2011 (14)
- August 2011 (5)
- July 2011 (7)
- June 2011 (8)
- May 2011 (3)
- April 2011 (7)
- March 2011 (2)
- February 2011 (2)
- December 2010 (2)
- November 2010 (5)
- October 2010 (4)
- September 2010 (6)
- August 2010 (3)
- June 2010 (4)
- May 2010 (3)
- April 2010 (3)
- March 2010 (2)
- February 2010 (6)
- January 2010 (16)
- December 2009 (6)
- November 2009 (2)
- October 2009 (7)
- September 2009 (12)
- August 2009 (4)
- July 2009 (4)
- June 2009 (4)
- May 2009 (4)