Contribuez à SecuObs en envoyant des bitcoins ou des dogecoins.
Nouveaux articles (fr): 1pwnthhW21zdnQ5WucjmnF3pk9puT5fDF
Amélioration du site: 1hckU85orcGCm8A9hk67391LCy4ECGJca

Contribute to SecuObs by sending bitcoins or dogecoins.

Chercher :
Newsletter :  


Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs





Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- USBsploit
- Commentaires


Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs


Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS/XML :
- Articles
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter


RSS SecuObs :
- sécurité
- exploit
- windows
- attaque
- outil
- microsoft


RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network


RSS Videos :
- curit
- security
- biomet
- metasploit
- biometric
- cking


RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco


RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS OPML :
- Français
- International











Revue de presse francophone :
- Appaloosa AppDome nouent un partenariat pour accompagner les entreprises dans le déploiement et la protection des applications mobiles
- D-Link offre une avec un routeur VPN sans fil AC
- 19 mai Paris Petit-Déjeuner Coreye Développer son business à l'abri des cyberattaques
- POYNTING PRESENTE LA NOUVELLE ANTENNE OMNI-291, SPECIALE MILIEU MARITIME, CÔTIER ET MILIEU HUMIDE
- Flexera Software Les utilisateurs français de PC progressent dans l'application de correctifs logiciels, mais des défis de tailles subsistent
- Riverbed lance SD-WAN basé sur le cloud
- Fujitsu multi-récompensé VMware lui décerne plusieurs Partner Innovation Awards à l'occasion du Partner Leadership Summit
- Zscaler Private Access sécuriser l'accès à distance en supprimant les risques inhérents aux réseaux privés virtuels
- QNAP annonce la sortie de QTS 4.2.1
- Une enquête réalisée par la société de cyber sécurité F-Secure a décelé des milliers de vulnérabilités graves, potentiellement utilisables par des cyber criminels pour infiltrer l'infrastru
- Trouver le juste équilibre entre une infrastructure dédiée et cloud le dilemme de la distribution numérique
- 3 juin - Fleurance - Cybersécurité Territoires
- Cyber-assurances Seules 40 pourcents des entreprises françaises sont couvertes contre les violations de sécurité et les pertes de données
- Des étudiants de l'ESIEA inventent CheckMyHTTPS un logiciel qui vérifie que vos connexions WEB sécurisées ne sont pas interceptées
- Les produits OmniSwitch d'Alcatel-Lucent Enterprise ALE gagnent en sécurité pour lutter contre les cyber-attaques modernes

Dernier articles de SecuObs :
- DIP, solution de partage d'informations automatisée
- Sqreen, protection applicative intelligente de nouvelle génération
- Renaud Bidou (Deny All): "L'innovation dans le domaine des WAFs s'oriente vers plus de bon sens et d'intelligence, plus de flexibilité et plus d'ergonomie"
- Mises à jour en perspective pour le système Vigik
- Les russes ont-ils pwn le système AEGIS ?
- Le ministère de l'intérieur censure une conférence au Canada
- Saut d'air gap, audit de firmware et (in)sécurité mobile au programme de Cansecwest 2014
- GCHQ: Le JTRIG torpille Anonymous qui torpille le JTRIG (ou pas)
- #FIC2014: Entrée en territoire inconnu
- Le Sénat investit dans les monnaies virtuelles

Revue de presse internationale :
- VEHICLE CYBERSECURITY DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack
- Demand letter served on poll body over disastrous Comeleak breach
- The Minimin Aims To Be The Simplest Theremin
- Hacking group PLATINUM used Windows own patching system against it
- Hacker With Victims in 100 Nations Gets 7 Years in Prison
- HPR2018 How to make Komboucha Tea
- Circuit Bender Artist bends Fresnel Lens for Art
- FBI Director Suggests iPhone Hacking Method May Remain Secret
- 2016 Hack Miami Conference May 13-15, 2016
- 8-bit Video Wall Made From 160 Gaming Keyboards
- In An Era Of Decline, News Sites Can t Afford Poor Web Performance
- BeautifulPeople.com experiences data breach 1m affected
- Swedish Air Space Infringed, Aircraft Not Required
- Why cybercriminals attack healthcare more than any other industry
- Setting the Benchmark in the Network Security Forensics Industry

Annuaire des videos
- FUZZING ON LINE PART THREE
- Official Maltego tutorial 5 Writing your own transforms
- Official Maltego tutorial 6 Integrating with SQL DBs
- Official Maltego tutorial 3 Importing CSVs spreadsheets
- install zeus botnet
- Eloy Magalhaes
- Official Maltego tutorial 1 Google s websites
- Official Maltego tutorial 4 Social Networks
- Blind String SQL Injection
- backdoor linux root from r57 php shell VPS khg crew redc00de
- How To Attaque Pc With Back Track 5 In Arabique
- RSA Todd Schomburg talks about Roundup Ready lines available in 2013
- Nessus Diagnostics Troubleshooting
- Panda Security Vidcast Panda GateDefender Performa Parte 2 de 2
- MultiPyInjector Shellcode Injection

Revue Twitter
- RT @fpalumbo: Cisco consistently leading the way ? buys vCider to boost its distributed cloud vision #CiscoONE
- @mckeay Looks odd... not much to go on (prob some slideshow/vid app under Linux)
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- RT @BrianHonan: Our problems are not technical but cultural. OWASP top 10 has not changed over the years @joshcorman #RSAC
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- [Blog Spam] Metasploit and PowerShell payloads
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- RT @nickhacks: Want to crash a remote host running Snow Leopard? Just use: nmap -P0 -6 --script=targets-ipv6-multicast-mld #wishiwaskidding
- An inexpensive proxy service called is actually a front for #malware distribution -

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse

Annuaires des videos : curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit

+ de mots clés pour les videos

Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter

Top bi-hebdo des articles de SecuObs
- [Ettercap – Partie 2] Ettercap par l'exemple - Man In the Middle et SSL sniffing
- [Infratech - release] version 0.6 de Bluetooth Stack Smasher
- [IDS Snort Windows – Partie 2] Installation et configuration
- [Infratech - vulnérabilité] Nouvelle version 0.8 de Bluetooth Stack Smasher
- Mises à jour en perspective pour le système Vigik
- USBDumper 2 nouvelle version nouvelles fonctions !
- EFIPW récupère automatiquement le mot de passe BIOS EFI des Macbook Pro avec processeurs Intel
- La sécurité des clés USB mise à mal par USBDUMPER
- Une faille critique de Firefox expose les utilisateurs de Tor Browser Bundle
- Installation sécurisée d'Apache Openssl, Php4, Mysql, Mod_ssl, Mod_rewrite, Mod_perl , Mod_security

Top bi-hebdo de la revue de presse
- StackScrambler and the Tale of a Packet Parsing Bug

Top bi-hebdo de l'annuaire des videos
- DC++ Botnet. How To DDos A Hub With Fake IPs.
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- Defcon 14 Hard Drive Recovery Part 3

Top bi-hebdo de la revue Twitter
- RT @secureideas: I believe that all the XSS flaws announced are fixed in CVS. Will test again tomorrow if so, release 1.4.3. #BASESnort
- Currently, we do not support 100% of the advanced PDF features found in Adobe Reader... At least that's a good idea.
- VPN (google): German Foreign Office Selects Orange Business for Terrestrial Wide: Full
- @DisK0nn3cT Not really, mostly permission issues/info leak...they've had a couple of XSS vulns but nothing direct.
- Swatting phreaker swatted and heading to jail: A 19-year-old American has been sentenced to eleven years in pris..
- RT @fjserna You are not a true hacker if the calc.exe payload is not the scientific one... infosuck.org/0x0035.png

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- [IDS Snort Windows – Partie 1] Introduction aux IDS et à SNORT
- Origami pour forger, analyser et manipuler des fichiers PDF malicieux

If you re going to be upset with me, please do it for the right reasons.

Si vous voulez bloquer ce service sur vos fils RSS
Si vous voulez nous contacter ou nous proposer un fil RSS

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]

S'abonner au fil RSS global de la revue de presse



If you re going to be upset with me, please do it for the right reasons.

Par Uncommon Sense Security
Le [2015-09-14] à 12:02:10



Présentation : First- I m speaking personally here, I am not speaking for anyone else, or for any organization, just for me. Second, please remember that BSides Las Vegas is not Security BSides. Each Security BSides event is organized and operated separately. Although there are familiar faces at some BSides and also at many other non-BSides events they are separate events and organizations. As of this writing there have been 202 Security BSides events across 83 cities which were not BSidesLV. Please do not let any frustration you have with Security BSides Las Vegas damage the work of thousands of people building communities around the globe. I doubt I ll change any minds, but I want people to understand my perspective on what happened between Security BSides Las Vegas, Inc. and Adrian Crenshaw, better known as Irongeek to many. Adrian has been a huge asset to the security and hacker communities for many years, providing videography and other services to a myriad of events- generally for free or for token assistance with expenses. Until recently I considered Adrian a friend, and I still do- although I doubt he feels the same towards me I can t blame him if he no longer considers me a friend and this truly saddens me. I still have a great deal of respect for Adrian and for what he does and has done for the communities he serves. Adrian s website, Irongeek.com is an amazing resource, it houses a phenomenal archive of presentations from a multitude of conferences. If you are unaware of the situation, it might be good to see Rob Graham s post at Errata Security, Rob has a detailed and independent view, and also see the official statement from the BSides Las Vegas Board of Directors. Or maybe you ll want to ignore it altogether, many do. Some folks mistakenly think this was about Adrian s views on women and is some kind of politically correct attempt to silence him that is absolutely wrong. We I and other members of the BSidesLV board have defended Adrian s right to voice his opinions even when BSidesLV was challenged for having someone with some of his views on staff we defended his right to express himself and we continued to embrace Adrian as part of the BSides Las Vegas team. We are a diverse community, and we have diverse opinions. Security BSides Las Vegas has encouraged diverse voices from the beginning, including content some found offensive. From Val Smith s brilliant social and political rant at the first event through John McAfee last year, from topics like 3-D printed sex toys to prostitution on Craigslist, we have never been shy about hosting and encouraging challenging ideas. Some will remember that BSidesLV s response to an unfortunate situation with Violet Blue at another event was to invite Violet to keynote BSidesLV 2013 to make sure her voice was heard. I do not want to silence Adrian. I have defended his right to voice his opinions, including those I strongly disagree with, and I will continue to do so. I m no Voltaire, but the quote from Evelyn Beatrice often misattributed to Voltaire himself I do not agree with what you have to say, but I'll defend to the death your right to say it. applies here. OK, maybe not all the way to death, but you get the idea. So what happened Adrian inserted offensive popups between content hosted on his site and anyone accessing the site from Mississippi State University, apparently because of a long-running disagreement with Wesley McGrew, an associate professor at MSU. Wesley has had disagreements with others in the past, but that isn t really relevant here. Regardless of what Wesley said or did to Adrian, part of Adrian s response used content donated to the community and entrusted to BSidesLV to advance his personal agenda without the consent or even knowledge of those whose videos were hosted on Adrian s site. BSides Las Vegas was notified and called out publicly and privately for the offensive material and once it became public, the response had to be public. Sadly, the appropriate response was terminating our relationship with Adrian and stating it publicly. Although not part of my decision to support the board s actions, I feel the issue was compounded because the few who saw the offending messages were students the next generation of our industry was exposed while trying to learn from community contributed content. I regret the action we had to take, but I stand with the board. Could we have handled it better Of course- but I m not sure exactly how. Maybe the wording of the statement could have been better, but the entire board was involved in drafting the statement. If you have genuinely constructive suggestions or criticisms, I welcome them. That s the short version yeah, almost 800 words is the short version , but I m including a few points below to address specific comments I ve seen. There s no prize for reading to the end, but if you want more context, please read on. The fact that few saw the message, and that the content was available elsewhere does not change the fact that community contributed content was used to promote offensive messages in a personal disagreement. No, it wasn t just an April Fools joke, I checked my calendar and couldn t find April 1 anywhere in September. It may have started with that, but it ran long after April 1, and the timing of hundreds of hours of new content uploaded over the summer and a new semester at the university inevitably led to the offensive messages being seen by students and reported publicly. And to be clear, Adrian is not banned from BSidesLV. I would welcome him with open arms if he ever wants to attend another BSides Las Vegas. Oh, and David Kennedy is a gentleman. Many people are only friends when it is easy to be friends- which isn t really what I consider friendship. David, thank you for being a friend with whom I can disagree and still remain friends. About the public response- in the past several years I have helped to mediate a number of conflicts, both public and private, within the hacker and InfoSec communities. One of the clear lessons I ve learned is that once an issue is public any attempt to sweep it under the rug is likely to backfire. Had the BSides Las Vegas Board of Directors attempted to be silent on this issue we would have been called out for it, and the issue would have become public, but not in any way under our control. The immediate rush by some to take sides wasn t unexpected, but it was generally disappointing. I have received many messages of support, but some were concerning rather than comforting. There seemed to be a significant, but not universal, split along an already stressed line those who primarily self-identify as hackers were more likely to attack BSidesLV, those who identify as InfoSec were much more likely to support BSidesLV. I guess we still have work to do bridging the gap, and those of us who straddle it continue to struggle. Statements like there s no room for misogynists in InfoSec are problematic for me. I ve had my little battles with systemic misogyny, notable the booth babe phenomenon this led to my parody company Misogyny Networks and a few amusing encounters. But there s no room for X ists in Z is troubling once we abstract it from the specifics. Thierry Zoller recently shared a video on The Right to Offend , delivered by Brendan O Neill at Oxford, https youtu.be BtWrljX9HRA. That video and https youtu.be Ya2nUm6UqLM by Shami Chakrabarti at the same event are powerful reminders of the importance of dissent and the freedom to offend. A factor that some have overlooked is that BSidesLV is different than many conferences. Security BSides Las Vegas, Inc. is a Nevada Charitable and Educational Non-Profit Corporation, and a 501 c 3 . The current corporation and board were built after BSides Las Vegas reorganized after earlier struggles, it was a conscious decision to create a 501 c 3 and create a transparent and structured entity- but that meant being a real corporation, with lawyers, accountants, bookkeepers, insurance, directors, officers, and policies. And legal and financial restrictions. It also means that we annually review and sign our conflict of interest policy and submit it to the Nevada Secretary of State it means we have our Sarbanes-Oxley-mandated Compliance Officer, and a lot of other fun things. At our size it means our tax forms do not end in EZ, and they aren t completed in an afternoon. It means we act like a corporation- because we are. So if the response seemed a bit corporate, it was. On the other hand, this structure means stability and survivability. It means unusual levels of transparency for a conference, including publicly available tax records and other filings. It also means that we are able to continue to offer free, anonymous, walk-in registrations since our non-profit status helps us manage expenses. Hopefully you now understand my perspectives, and if you re upset with me about this at least you re upset for the right reasons. Jack




AddThis Social Bookmark Widget



Les derniers articles du site "Uncommon Sense Security" :

- Where s Jack, updated
- Debunking debunking, part 1
- Where s Jack
- For the bored Infosec Noir
- Open Live Writer
- Introducing the PIVOT Project
- A different kind of magic
- Recruiter and SEO response templates
- SWAMP, the Software Assurance Marketplace
- A long overdue note of thanks




S'abonner au fil RSS global de la revue de presse

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]



Si vous voulez bloquer ce service sur vos fils RSS :
- avec iptables "iptables -A INPUT -s 88.190.17.190 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 88.190.17.190 to any 80"
- Nous contacter par mail




SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :