http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2009-11-05 19:12:08 - Blog Saecur Obvious Security. : Location Capitol College - Laurel, Maryland Time 6 00 - 9 30 PM Please register by clicking the registration tab Title Void Your Warranty Speaker Sean Wilkerson, Co-Founder Aplura Description Typical enterprise network security architecture includes many solutions software and hardware designed to do things such as enhance visibility detection of threats or stop unwanted traffic Billions of dollars are spent each year on security products which keep color graphs on our executives desks, security managers at relative peace, and the vendors in business, but what are these products missing The average IT Security administrator is slowly losing control of their network with each appliance or turn-key solution they install We will discuss how to get back this control, hold your vendors and staff accountable, and why this is critical This won't be nearly as dramatic as a Fox exclusive When Security Products go Bad, however we will discuss the larger problem and what you can and should do to inspect, audit, and enhance your security solutions Speaker Bio Sean is co-founder, partner, and consultant for Aplura, a DC-area security consulting company Sean has spent the last decade managing IT and Information Security systems For the last half of that time, Sean has traveled to several continents for many entities, with a typical objective to enhance network visibility and reduce analyst reaction time -- Title FISMA It doesn't bite Speaker Dan Philpott, Founder FISMApediaorg Description In this seminar Dan Philpott will discuss the Federal Information Security Management Act FISMA and the compliance regime created for it Starting with a high level overview of FISMA the problems and possibilities, fallacies and future of the FISMA framework will be explored The goal of this talk is to present the FISMA framework as it is intended, not a mindless exercise at paper compliance, but as guidance and method to achieve functional security scoped to the risk of operation Speaker Bio Daniel Philpott is an Information Security Consultant with OnPoint Consulting where he specializes in FISMA compliance Daniel is founder of the FISMApediaorg wiki, a guest blogger at Guerilla-CISOcom and a FISMA instructor with Potomac Forum -- Title Shining Flashlights in Dark Corners The evolving role of information security on campus Speaker Eric Weakland, Director of Network Security, American University Eric Weakland will trace his rise through the ranks of an emerging security organization, starting out in the late 1990s and continuing on into the increasingly regulated and formal security environment of the last few years As concrete examples, Weakland will describe how the AU security team has approached more recent challenges such as encryption and web application security on campus This interactive talk will include technical lessons learned from over a decade of practice with increasingly sophisticated tools, as well as valuable management lessons on how to best serve multiple, competing constituencies, in a chaotic campus IT environment Speaker Bio Eric Weakland is the Director of Network Security at American University in Washington DC Eric has extensive experience in planning strategic initiatives to serve emergent information security needs in the Higher Education market He holds a Bachelors degree from Carnegie Mellon University and a Masters of Science in Information Technology Management from American University's Kogod School of Business IMAGE http://www.secuobs.com/revue/news/157913.shtmlhttp://www.secuobs.com/revue/news/157913.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - In this video I talk about the secrets of test taking and how I did four years of college credits in 12 months AKA Hacked my Degree I received my Regionally Accredited Bachelor's degree from Excelsior College I followed that up with a Master of Science from Capitol College Click links for more on CLEP or DSST tests for college credits IMAGE http://www.secuobs.com/revue/news/157912.shtmlhttp://www.secuobs.com/revue/news/157912.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - I'm always asked What tool should I learn Wireshark is the most flexible tool across the board, no matter what your information technology discipline is Download Wireshark at http wwwwiresharkorg For those who don't know, Wireshark is a FOSS network protocol analyzer I love me some Wireshark If you aren't experienced with it you need to download now and play Any questions Please leave comments Happy Packet Sniffing IMAGE http://www.secuobs.com/revue/news/157911.shtmlhttp://www.secuobs.com/revue/news/157911.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - The speakers for DojoSec Monthly Briefings for June 4, 2009 are set Feel free to pass this information along to a friend so they can register Date June 4, 2009 Time 6 00 - 9 30 PM Entry Fee 1 Location Capitol College - Avrum Gudelsky Memorial Auditorium Register http wwwdojoseccom page_id 37 Directions http wwwcapitol-collegeedu visit-campus directions-campus -- WHAT TO DO WITH THE UNKNOWN Alain Zidouemba, Sourcefire - http wwwsourcefirecom DESCRIPTION Clam AntiVirus is an open source anti-virus toolkit for UNIX systems The main purpose of this software lies in the integration with mail servers enabling mail attachment scanning before the end user receives a virus Like other anti-virus software, the engine for ClamAV has pattern matching technology at it's heart Updates to the malware signatures are released on a regular basis by ClamAV Researchers When no signatures are available however, or when updates are not coming fast enough the only option is to create signatures Fortunately, ClamAV signatures are open and this enables the administrator to fill in the gap for themselves BIO Alain Zidouemba was born in Ouagadougou, Burkina Faso He studied Mathématiques Supérieures and Mathématiques Spéciales at the Lycée Jacques Amyot in France and Electrical and Computer Engineering at Howard University in the US He worked in the area of network modelling and simulation at OPNET Technologies before taking a position at PestPatrol as a Spyware Researcher He later joined Computer Associates to work on intrusion prevention and behavioral malware analysis Alain recently became part of the Vulnerability Research Team VRT at Sourcefire and performs research in the areas of intrusion prevention and anti-malware -- HOW NOT TO GET PWND BY YOUR CLIENTS Richard Goldberg, Esq - http wwwgoldberglawdccom DESCRIPTION In your service and employment contracts, there are certain things you should never agree to, and there are certain protections you always need Otherwise you're essentially betting your future, and the future of your company, on the hope that nothing will go wrong Ever This talk will tell you how to keep yourself out of trouble Topics will include dealing with standard contracts and standard provisions what it means to indemnify someone else how to protect your intellectual property and confidential information and other dangers, including warranties and audit-rights provisions It will also cover some negotiation strategies BIO Richard is a Java architect-turned lawyer Having worked in software beginning in the mid-90s with commercial customers and federal DOD contractors and agencies, Richard has represented small information security companies and some of the largest names in OpenSource -- GETTING PHYSICAL WITH MOBILE DEVICES Eoghan Casey, cmdLabs DESCRIPTION Acquiring and analyzing physical memory is one the more challenging aspects of mobile device forensics, but can also be one of the most rewarding Delving into deleted data on a mobile device can uncover valuable information, particularly when an individual took steps to conceal his activities This seminar covers various techniques and tools for dumping and analyzing physical memory from mobile devices, including Flasher boxes In addition, we will provide examples of items recovered from physical memory that are not accessible using most forensic tools As we become more adept at obtaining deleted data from physical memory, some manufacturers are taking steps to enhance the security of their devices We will discuss potential approaches to circumventing these security measures, with the hope that we can continue to improve our abilities to recover useful information from mobile devices BIO Eoghan Casey is founding partner of cmdLabs wwwcmdlabscom , author of the foundational book Digital Evidence and Computer Crime, and coauthor of Malware Forensics For over a decade, he has dedicated himself to advancing the practice of incident handling and digital forensics He helps client organizations handle security breaches and analyzes digital evidence in a wide range of investigations, including network intrusions with international scope He has testified in civil and criminal cases, and has submitted expert reports and prepared trial exhibits for computer forensic and cyber-crime cases Eoghan has performed thousands of forensic acquisitions and examinations, including e-mail and file servers, mobile devices, backup tapes, database systems, and network logs He has performed vulnerability assessments, deployed and maintained intrusion detection systems, firewalls and public key infrastructures, and developed policies, procedures, and educational programs for a variety of organizations In addition, he conducts research and teaches graduate students at Johns Hopkins University Information Security Institute, is editor of the Handbook of Digital Forensics and Investigation, and is Editor-in-Chief of Elsevier's International Journal of Digital Investigation IMAGE http://www.secuobs.com/revue/news/157910.shtmlhttp://www.secuobs.com/revue/news/157910.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - People should concentrate more on their local area and build hyper-local security communities It's the locals that can make the biggest impact on your life So many people are obsessed with national level attention, but if they handle their business locally their name would blow up This may be a bit strange to some that I'd rather be known in my area than nationally You can trace the paths to success in many professions and see the mavens were successful on a small or local level before they achieved national fame IMAGE http://www.secuobs.com/revue/news/157909.shtmlhttp://www.secuobs.com/revue/news/157909.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - DojoSec How to Build a Hyper-Local Security Community - Marcus Carey, DojoSec - Thursday, June 18 6 00 pm - 7 00 pm Do not leave this event to go back to your normal sequestered existence, the information security industry needs you There are people dying for you to mentor them and the key to success in our industry is the sharing of information After this event the attendees should go back into the local security communites and lead In this talk attendees will learn how Marcus started the most well attended monthly security professional meetup in the country You will learn how that meetup has gained considerable international buzz in the information security industry Together with the SANS Institute events, local information security professionals can keep the fire burning throughout the year by going hyper-local Marcus J Carey is passionate about mentoring our current and next generation of security professionals In Marcus' 15 year information security career, he has worked in Navy Cryptology, at NSA, at DoD Cyber Crime Center, and currently engineers solutions for a federal agency Marcus created DojoSec to mentor and facilitate knowledge transfer amongst information security professionals Marcus' skillset includes network exploitation, data forensics, secure network architecture, and log analysis Marcus earned a Master of Science in Network Security from Capitol College in Laurel, Maryland Marcus is also a contributor to the PaulDotCom Security Weekly Podcast and Blog IMAGE http://www.secuobs.com/revue/news/157908.shtmlhttp://www.secuobs.com/revue/news/157908.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - The July DojoSec Monthly Briefings is canceled due to a conflict with the federal holiday observation this Friday I hope you all enjoy your long weekend The next DojoSec will take place on August 6, 2009 Videos from the June briefings will be released soon IMAGE http://www.secuobs.com/revue/news/157907.shtmlhttp://www.secuobs.com/revue/news/157907.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - You are invited to transform you career and learn how to communicate the value of security Michael Santarcangelo, an innovator in the field of security, author and professional speaker you ve seen him speak blends his unique and powerful experiences into an innovative seminar that rapidly transforms how participants communicate the value of security especially to those without a technical background During this special preview of the Security Catalyst Communicating the Value of Security Seminar combined with an afternoon for the family think pool party , BBQ provided courtesy of Cauldron and then an afternoon evening of campfire conversations to explore whatever topics make sense to those of us there, as a families Saturday, July 25, starting at 10AM - George Mason University, Fairfax, Virginia To learn more and sign up now http wwwsecuritycatalystcom cvs-seminar-preview IMAGE http://www.secuobs.com/revue/news/157906.shtmlhttp://www.secuobs.com/revue/news/157906.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Jayson E Street handled this interview like a true Information Security Professional should It reminded me of Dragnet, Just the facts No exaggerations and he ended up being correct I've seen many people jump the gun and pointing fingers before all the details are known Kudos to Jayson for keeping a level head IMAGE http://www.secuobs.com/revue/news/157905.shtmlhttp://www.secuobs.com/revue/news/157905.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Alain Zidouemba from Sourcefire VRT delivers an interesting talk on writing custom Anti-Virus signatures using ClamAV Saecur DojoSec is sponsored by Tenable Network Security, Sourcefire, and TechGuard Security IMAGE http://www.secuobs.com/revue/news/157904.shtmlhttp://www.secuobs.com/revue/news/157904.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Programmer turned lawyer Richard Goldberg, Esq gives a great talk about the legal ramifications of doing information security work Saecur DojoSec is sponsored by Tenable Network Security, Sourcefire, and TechGuard Security IMAGE http://www.secuobs.com/revue/news/157903.shtmlhttp://www.secuobs.com/revue/news/157903.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - IPv6 guru, Joe Klein of Command Information gives a talk on the already present dangers of IPv6 Saecur DojoSec is sponsored by Tenable Network Security, Sourcefire, and TechGuard Security IMAGE http://www.secuobs.com/revue/news/157902.shtmlhttp://www.secuobs.com/revue/news/157902.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Eoghan Casey of cmdLabs presented a talk on the Mobile Phone Forensics This talk highlighted some new methods of extracting data which in many cases would have been considered loss Saecur DojoSec is sponsored by Tenable Network Security, Sourcefire, and TechGuard Security IMAGE http://www.secuobs.com/revue/news/157901.shtmlhttp://www.secuobs.com/revue/news/157901.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Apple's File Vault - How Secure is it Location Capitol College, Avrum Gudelsky Memorial Auditorium Time 6-10pm Admission 1 -- Apple's File Vault - How Secure is it Sean Morrissey Computer Forensics Senior Professional CSC This topic will cover new discoveries in Apple's File Vault technology Sean Morrissey is a Computer Forensic Senior Professional for CSC Sean's background is in law enforcement and the US Army Sean's focus has been on Apple's iPhone and Mac operating systems forensics He is presently an instructor in Computer Forensics at the Defense Cybercrime Center DC3 Sean contributed as lead author to Syngress's Mac OS X iPod, and iPhone Forensic Anaylsis book -- The First 120 Mr Dale Beauchamp Branch Chief Digital Forensics Transportation security Administration TSA The First 120 This topic references the use of live forensics during an incident response to investigate any given incident from report to containment in 2 hours or less Similar to solving murder cases in the first 48 hours it is crucial to investigate incidents to closure quickly and completely This technique answers both the pressure from management and the need to accurately eject attackers from the enterprise Use of this rapid response technique has been a proven effective method in limiting the time attackers have to dig in and change their tactics to avoid detection The tools and processes to meet this task will be discussed in detail to include a real world case example Dale Beauchamp currently serves as Branch chief of Digital Forensics for the Office of Information Security for TSA Dale previously served as Senior Forensics and Intrusions Instructor for the Defense Cyber Training Academy As an instructor for DCITA he developed and delivered courses for federal state and local law agencies engaged in the investigation of high technology crime and intelligence gathering Dale has seven years law enforcement experience as a Maryland State Trooper As a Trooper he was assigned to the Computer Crime section Where he worked as a Computer Forensic Investigator providing, detailed digital forensics analysis support to a host of criminal and administrative investigations Additionally he has served as the Senior Forensics Analyst for the Transportation Security Administration s, Incident response and Forensics team While on the TSA incident response team he performed detailed forensics analysis and provided support for a variety of administrative and criminal investigations Dale has a Bachelors of Science degree from the University of Baltimore in Business Administration -- The Big Picture Web Risks and Assessments Beyond Scanning Matt Fisher Web Application Security SME Pent-Test Lead Piscis LLC This talk is an unabashed look at the role and limitations of automated technologies in a complete web risk assessment by an industry pioneer and veteran Whereas once a good web scanner could be thought of at the sum total of a strong web application security program, now it's only the beginning We will look at a broader picture of web risks and their associated threats, and what assessment techniques and technologies can be applied to them Matthew Fisher was the first Security Engineer hired by what was arguably the most successful web application scanner manufacturer in the industry and was instrumental in building the web application security industry He recently left Hewlett-Packard which acquired his former company in 2007 to start Piscis a unique consulting company that 'blackboxes' the industry's best veterans to organizations that would otherwise be unable to obtain their resources Under Piscis, Matt is currently providing services to a government security agency, and leads the Penetration Testing team while also implementing a holistic software assurance program He has several original vulnerabilities, exploit and testing techniques to his name, and is an accomplished writer and speaker He has presented at ShmooCon, ToorCon, Gartner, CSI, the NSA's ReBl conference, and many others This is his 4th year presenting at the DoD Cybercrime Conference IMAGE http://www.secuobs.com/revue/news/157900.shtmlhttp://www.secuobs.com/revue/news/157900.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - The management team of TheTrainingCo, producers of the annual Techno Forensics Conference Digital Investigations Conference at NIST Headquarters in Gaithersburg, MD, has made all DojoSec attendees a special offer for this year's Conference being held on October 26 - 28, 2009 They have offered us some FREE seats for the entire 3 day conference This conference will also serve as our official DojoSec Monthly Briefing for October There will also be a DojoSec half-day track which I will host This will be the fifth year for Techno Forensics Digital Investigations, and many of their Techno Security attendees and speakers attend both conferences every year These are some of the top practitioners in the world in the fields of eDiscovery, Digital Forensics and Information Security There were over 1,100 people registered for this conference last year and it has become a very popular event The current full price registration is 1095 In order to take advantage of this offer, register using the website address below and select that price, but enter 0 for amount paid and enter DojoSec in the Promotional Code section of the form For any attendees who hold a CISSP, CISA or CISM certification, this conference also provides 20 CEU hours Here's more information about the conference http wwwtechseccom html TechnoForensics2009html To register for one of the FREE VIP seats, visit the following online registration page and follow the instructions provided above https wwwtechseccom conferences registercgi c TF-2009 If you are planning to attend, please register for the event by August 15th I hope to see you all there -MJC IMAGE http://www.secuobs.com/revue/news/157899.shtmlhttp://www.secuobs.com/revue/news/157899.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Everyone, I apologize for the late notice but I was holding out for a confirmation that fell through Logistically it's not always easy to pull off DojoSec Monthly Briefings Throughout the summer months it has been harder Despite setbacks the future is looking bright for DojoSec Next month will mark the one year anniversary of DojoSec Monthly Briefings We will have two DojoSec events in October The monthly DojoSec will take place on October 1st We will also have a DojoSec Track at the Techno Forensics Conference on October 27th Sincerely, Marcus J Carey IMAGE http://www.secuobs.com/revue/news/157898.shtmlhttp://www.secuobs.com/revue/news/157898.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - I'm pleased to announce that DojoSec is presenting a two-day conference DojoCon on November 6th 7th The list of speakers is already impressive and we will be stuffing more content into this two-day event as we go For every registrant to DojoCon, I will donate 50 to Hackers for Charity Please show your support for DojoSec and Hackers for Charity by registering for the conference today http wwwdojoconorg IMAGE http://www.secuobs.com/revue/news/157897.shtmlhttp://www.secuobs.com/revue/news/157897.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Con-Techie, the open source tech conference directory, interviewed me about DojoCon 2009 In the article I talk about the birth of DojoSec, DojoCon, and my relationship with Johnny Long of Hackers for Charity Let me know what you think IMAGE http://www.secuobs.com/revue/news/157896.shtmlhttp://www.secuobs.com/revue/news/157896.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Matt Fisher of Piscis Security delivered a great talk at DojoSec Matt is known as a pioneer in the Web Application Security arena He really dropped some knowledge in this talk The good news is that Matt will be back in the Dojo sharing his knowledge at DojoCon Hope you enjoy this content IMAGE http://www.secuobs.com/revue/news/157895.shtmlhttp://www.secuobs.com/revue/news/157895.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - In this episode of DojoSec TV, Joe McCray interviews Chris Burton about security compliance Security compliance and FISMA is a foreign language to many I hope this interview can serve as a quick introduction to FISMA Chris will be on the State of Security Compliace panel at DojoCon -MJC IMAGE http://www.secuobs.com/revue/news/157894.shtmlhttp://www.secuobs.com/revue/news/157894.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - In this episode of DojoSec TV, Joe McCray interviews Matt Fisher of Piscis Security Matt is a pioneer in the web application security arena This interview has a great conversation on the topic Matt will deliver a talk at DojoCon IMAGE http://www.secuobs.com/revue/news/157893.shtmlhttp://www.secuobs.com/revue/news/157893.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Brian Baskin and I are doing somewhat controversial talks at the Techno Forensics conference We'd like to deliver these talks at DojoSec Monthly Briefings first, followed by an open discussion on both of our talks See you there CASUAL CYBER CRIME The Fine Line Between Social and Criminal Useby Brian Baskin We're living in an age of devices and applications that push the boundaries of dreams, an age of instant gratification, but also the age of Digital Rights Management and Copyright laws With questionably illegal modifications becoming simple enough for children to use, where does the line get drawn between squeezing more functionality out of your digital devices and software and breaking felony laws In this talk attendees will explore the justifications and rationales behind the use of questionable hardware and software modifications and understand the mentality behind why their use is rapidly catching on in the general population METASPONSE Incident Response with Metasploitby Marcus J Carey - Director of Innovation, Saecur The Metasploit Project has drawn the ire of many security professionals The project maintains that it exists to provide information on exploit techniques and to create a useful resource for exploit developers and security professionals While many may argue the merits of Metasploit, the fact remains it is one of the best free and open source security related projects on the planet Instead of fighting these type of projects we can embrace what works for security professionals In this talk I will show security professionals how to harness to power of Metasploit for incident response IMAGE http://www.secuobs.com/revue/news/157892.shtmlhttp://www.secuobs.com/revue/news/157892.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - If you are having a tough time removing malware from your PC, you might want to check out Malwarebytes Anti-Malware software Thankfully, you can download a free version which is very effective at removing malware from your Microsoft Windows based system Malwarebytes is so effective, that it is one of the preferred tools used for malware removal within the US Government It produces equal or better results than many other commercial tools on the market It's very simple to use and the scanning process is relatively fast in comparison to other malware removal tools IMAGE http://www.secuobs.com/revue/news/157891.shtmlhttp://www.secuobs.com/revue/news/157891.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - Can you get sunburn if it s cloudy outside The answer is yes, because the clouds don t block the dangerous rays that burn and cause cancer Many people believe that the clouds give their skin protection against the sun This is a big mistake that I ve found out first hand many times recently So I tend to put on sun block before I go outside for long days Our skin is a major asset because it is the first line of defense against infection We are personally responsible for protecting our asset by applying sun block when needed In the information technology industry, Cloud Computing has reminded me of the false sense of security that real clouds have given us Recently the T-Mobile Microsoft Sidekick data loss debacle has put into question the reliability of Cloud Computing and Cloud Storage It is important to remember, when we outsource services and infrastructure to the Cloud, we don t outsource responsibility The T-Mobile Sidekick issue affected many consumers Just imagine if this was a billion dollar sales organization which lost sales leads, bad news Several Google Apps services have been disrupted lately, thank goodness there has been no data loss associated with those outages If Google were to lose my critical data, whose fault would it be for no back-ups The old saying goes, When you point your finger at someone, there are three fingers pointing back at you I believe that Cloud solution providers will do their best job hopefully to maintain confidentiality, integrity, and availability of their client's data When it comes down to it, each organization still must accept responsibility and accountability for their critical assets If you moved to the Cloud, your business continuity and disaster recovery plans should reflect the worst case scenario This means you should have some sort of limited backups that your organization controls At least perform an assessment of what the minimum requirements are, and then make plans accordingly I m not telling you anything new here, it takes a bit of effort Who are we kidding Hard drives fail, tape backups didn t backup anything, back-ups fall off trucks, dog ate my homework, etc No one, not even the Cloud, is going to do your pushups for you Cloud Computing won t keep your organization from getting burned IMAGE http://www.secuobs.com/revue/news/157890.shtmlhttp://www.secuobs.com/revue/news/157890.shtml Secuobs.com : 2009-11-05 19:12:08 - Blog Saecur Obvious Security. - My friend Joshua Marpet recorded video of me doing my Metasponse talk at the Techno Forensics Conference at NIST on his iPhone He'll be sending me the complete video so I can post it as one Although I could take my own video equipment everywhere with me, it sometimes feels stage This is as real as it gets Thanks Joshua Marcus J Carey - Metasponse Talk Techno Forensics Conference from Marcus J Carey on Vimeo IMAGE http://www.secuobs.com/revue/news/157889.shtmlhttp://www.secuobs.com/revue/news/157889.shtml