truecrypt

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Andrew shows how to install log2timeline on a SANS Investigative Forensic (SIFT) workstation.
    Andrew Hay >> Blog Archive >> Installing log2timeline on SIFT - Updated Instructions for Ease of Use
    Tags: ( forensics )
  2. Before you fire up your new RDS instance with Amazon, you might want to take a gander at Adriane's post. This is not to say don't do it, just some things to think about before you do.
    Securosis Blog | Amazon RDS Announced
    Tags: ( mysql amazon rds )
  3. Some thoughts about cross-gadget security in Google Wave.
    Cross-Gadget Security in Google Wave
    Tags: ( wave )
  4. Richard pulls together a lot of the conversation about A6.
    TaoSecurity: Initial Thoughts on Cloud A6
    Tags: ( cloud a6 )
  5. As always, if an attacker has physical access, things get much easier.
    My not so evil maid - Truecrypt encryption attack | Security Active Blog
    Tags: ( truecrypt )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Hi folks.

The Backtrack 4 USB Drive How-to has undergone a huge re-write. One of the largest changes is that we are no longer using UNetBootin except for one minor thing and then only if you want to. Everything is done from within Backtrack itself now.

Another change is that I have added instructions on setting up encryption with Truecrypt directly into the how-to. Finally, I have added some interesting tweaks such as mounting the Truecrypt volume on boot, changing root's home directory to the encrypted volume on the fly and setting nessus up to log to the encrypted directory.

It still lives in the same place.

If you were using the old how-to and don't want to start over, it is living here now. The parts of the new how-to on encryption and tweaks will still work with the old how-to if you just want to add that bit.

As always, let me know of any problems, typos, mistakes, etc. of which I am sure there are plenty. 🙂

-Kevin

{ 0 comments }

I participated in the Nebraska CERT Conference this week and gave a talk on Building the Perfect Backtrack 4USB Thumb Drive. Below is the slide deck from my talk.

Let me know if you have any comments or questions.

-Kevin

{ 4 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Infocon to yellow for 24 hours.
    * Infocon raised to yellow for Excel Web Components ActiveX vulnerability
    Tags: ( infocon )
  2. I knew it was not going to end well when I first heard that ATMs were going to be armed with pepper spray.
    Pepper Spray-Armed ATM Misfires, Shoots Workers | Threat Level | Wired.com
    Tags: ( general )
  3. Didier gives us a nifty little tip on hiding the fact that our laptop is encrypted.
    Quickpost: TrueCrypt's Boot Loader Screen Options << Didier Stevens
    Tags: ( encryption truecrypt )
  4. The solution and winners for the first Panda Labs challenge are up.
    1st Panda Challenge solution & winners - PandaLabs
    Tags: ( challenge answer )
  5. This is cool. One of the teams that participated in the Defcon 17 CTF qualifiers made a comic of how they answered one of the challenges. (Hat tip: @mubix)
    http://hackerschool.org/DefconCTF/17/B300.html
    Tags: ( ctf defcon )
  6. Rafal talks about a comment spam toolkit. The comments are very interesting too.
    Digital Soapbox - Preaching Security to the Digital Masses: Devastated by a Link-Spam Tool?
    Tags: ( spam )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }