2018-007- Memcached DDoS, Secure Framework Documentation, and chromebook hacking

45:59
 
Share
 

Manage episode 199507761 series 58350
By Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio streamed directly from their servers.

Topics:

  • Secure Framework documents
  • Modifying chromebooks so you can use Debian/Ubuntu
  • Memcached is the new DDoS hotness
  • Announcement of the next BrakeSec Training Class (see Show Notes below for more info)

Link to secure framework document: https://drive.google.com/open?id=1xLfY4uI88K2AiA1mosWJ7jFyP100Jv5d

Tickets are already on sale for "Hack in the Box" in Amsterdam from 9-13 April 2018, and using the checkout code 'brakeingsecurity' discount code gets you a 10% discount". Register at https://conference.hitb.org/hitbsecconf2018ams/register/

#Spotify: https://brakesec.com/spotifyBDS

#RSS: https://brakesec.com/BrakesecRSS

#Youtube Channel: http://www.youtube.com/c/BDSPodcast

#iTunes Store Link: https://brakesec.com/BDSiTunes

#Google Play Store: https://brakesec.com/BDS-GooglePlay

Our main site: https://brakesec.com/bdswebsite

Join our #Slack Channel! Email us at bds.podcast@gmail.com

or DM us on Twitter @brakesec

#iHeartRadio App: https://brakesec.com/iHeartBrakesec

#SoundCloud: https://brakesec.com/SoundcloudBrakesec

Comments, Questions, Feedback: bds.podcast@gmail.com

Support Brakeing Down Security Podcast by using our #Paypal: https://brakesec.com/PaypalBDS OR our #Patreon

https://brakesec.com/BDSPatreon

#Twitter: @brakesec @boettcherpwned @bryanbrake @infosystir

#Player.FM : https://brakesec.com/BDS-PlayerFM

#Stitcher Network: https://brakesec.com/BrakeSecStitcher

#TuneIn Radio App: https://brakesec.com/TuneInBrakesec

--Show Notes--

Announcements:

Matt Miller’s class on Assembly and Reverse engineering

Starts 2 April - 6 sessions

2nd Class - 6 sessions, beginning 21 May

Beginner course on Assembly

Advanced course, dealing with more advanced topics

$150 for each class, or a $250 deal if you sign up for both classes

paypal.me/BDSPodcast/150USD - Specify in the NOTES if you want the “Beginner” or “Advanced” course

paypal.me/BDSPodcast/250USD - If you want both courses

We need a minimum of 10 students per class

Projects:

Chromebook with Debian

Bit of a pain, if I could be honest..

Needed USB hub with eth0, and a USB soundcard

USB3 low profile thumbdrives would be better

https://www.amazon.com/gp/product/B01K5EBCES/ref=oh_aui_detailpage_o01_s00?ie=UTF8&psc=1

https://www.securecontrolsframework.com/ ←--well well worth the signup

https://drive.google.com/open?id=1xLfY4uI88K2AiA1mosWJ7jFyP100Jv5d - ‘secure.xlsx’

http://www.dummies.com/programming/certification/security-control-frameworks/

Numerous security frameworks already exist:

Cisco

NiST

CoBIT

ITIL (can be utilized)

SWIFT https://www.accesspay.com/wp-content/uploads/2017/09/SWIFT_Customer_Security_Controls_Framework.pdf

“My weird path to #infosec” on twitter

https://en.wikipedia.org/wiki/Hydrocolloid_dressing

238 episodes available. A new episode about every 7 days averaging 58 mins duration .