I’m going to be meeting up with my friend Anthony this week to do a pilot show for the security oriented “podcast” I want to fool around with.  We’re still trying to nail down a format that will be unique enough for me to be satisfied, as well as the length, but I think that will all come together soon.  He has some hosting for the site I want to put together for it, but there are some issues to iron out with that before we can go public with the site/show.  Regardless of whether or not that gets figured out there will be a site/forums to go along with the show when we launch it.

This past weekend I did the visiting Christine routine up in MD.  We did the 105 degree variant of Yoga on Friday, and that was sure something.  90 minutes of sweating, stretching, and slurping down water so you don’t pass out.  I probably wasn’t the best candidate for it because I am a bit out of shape, but I did feel pretty damn good afterwards.  The teacher could’ve been a little nicer, as we had a totalitarian dominatrix it felt like.  You can find a yoga mat/towel for under 40 bucks combined in most places.  It was $8 per person for the actual session where we went.  A gym membership is still a better deal for general workouts.

While I was up there we went to the Orioles vs Yankees game on Saturday, where Baltimore triumphed 6-0.  There was nearly a fight in front of us where about 25-30 people got ejected from the game after at least 5 cops showed up.  It would’ve been 5 vs 20ish though, which would not have been very pretty.  I guess it’s quite a rivalry, although I wouldn’t know as I don’t really follow baseball.

If there’s filming this coming weekend for Hak5 3×10 I will most likely be doing some more reverse engineering type stuff.  I’m going to see if I can’t get what I have in mind working. 

So the live show was interesting Sat.  Thanks for all that tuned in.  I need a better way to manage the incoming callers and stuff

I’m listening to dubstep, an offshoot of my buddy Greg’s freshsets site that has listeners this time around.  Really good music.  Check em out at http://www.dubterrain.net/

In other news, I won’t be able to go to Defcon this year.  So I will likely see all the security types at Shmoocon once again next year.

 There will be a Hak5 Live show this Saturday the 12th, at 7pm EST.  Details will be on http://www.hak5.org and probably hak5live.org too.  I’ve got a couple of goodies to talk about and hopefully announce something pretty awesome.

I can consistently make it to 81% in Green Grass and High Tides by The Outlaws in Rock Band now.  I have to learn how to correctly play those sets of 3 notes which just go up and down the frets during that part.  It’s pretty ridiculous.  I’m very happy though, it’s a tough, tough song and gives me a really fun challenge.

I submitted my CPE’s for the Intrusion Detection Systems training I gave at work the last 2 weeks, which brings me up to a pretty decent number so far since I obtained the CISSP.  I may convert some of my material into a format I can put up on the site here.

I’ll be talking about the knoppix-based forensic live CD called Helix on the next Hak5 episode which we’re shooting this coming weekend.  It’s been out there for quite awhile, and as a security guy I have gotten the opportunity to use it in an incident response role a couple of times.  I believe a 2.0 release is coming in the next couple of months, but no official word yet.

I need some geek roommates so I can delegate some of this network stuff to them :).  I’ll eventually get things online, I just stay fairly busy.  Sorry!

Hak5 Live will be up at http://www.hak5.org at 9pm EST.  Tune in and enjoy!

I purchased a few months at Slicehost just to muck about with them.  I don’t have the bandwidth at home to run a fully fledged server like this, and at $20/mo it’s probably cheaper than the electricity I would use at the house.

I’ll have a more detailed writeup of my experience at Shmoocon this year sometime during the week. For now I am relaxing back at the Hak5 house and thankfully have the day off tomorrow to recover from what was one hell of a weekend.

I managed to attend G Mark Hardy’s talk as well as Simple Nomad’s which were both excellent as expected. The live show we did on Friday had a bit of a “glitch” and no audio made it to the recording. These things happen and we’ll rebound from it. I made some new friends and contacts, and learned a lot of fun new things as usual.

surbo from http://www.i-hacked.com got us into Katsucon Friday night, and that was a total blast. Saturday was the Shmoo party and that was a lot of fun as well. The alcohol tab lasted a LOT longer this year than last. I didn’t do too much drinking though.

More later, as I need to unwind.

We’re only two days away!  It seems this conference just gets better each year it runs.  I wonder if there will be a bigger venue next year, haha.

The live show is ~9pm Friday and should be really fun.  We’re having some very cool guests.  It will be the last time I will be having alcohol until after my surgery unfortunately, but I will enjoy it.

If you or anyone you know has an extra Shmoocon ticket I would like to get Christine in.  There only seems to be one left on ebay worth pursuing and I don’t know if I will be at the computer in 4 hours to take a shot at it.

I am trying to put together a proper hacking toolkit after reading an article on hackaday encouraging people to come up with the perfect hacker workbench.

I already ordered my oscilloscope kit today, it’s a PC based one, not a full fledged scope, but I think I will be happy with it as it’s been 4 years since I used a real one and this is a cheap entry level thing to get started.

What would you buy? Here’s the article with the comments.

We did some filming last night and today for the next episode of Hak.5, my segment went off fairly well although I think I should’ve touched more on IDA Pro since it’s the most mainstream of the decompiling programs out there as far as I hear.  I covered a Crackme posted at http://www.learnsecurityonline.com using .NET Reflector to break it open and find the password.  It’s pretty fun.  Learning more of the hands on stuff always helps my big picture view of network security.

In regards to the Hakme project, I acquired the CTF server from Will and will be getting that thing loaded up, and the appropriate people access to it tomorrow.  It’s a pretty decent right to launch the project with, and hopefully we outgrow it while being able to afford a replacement.

That’s all for now.

I’ve setup a page on the site located here and am actively looking for volunteers.  I think we’re going to setup a separate IRC room and create a mailing list, and figure out what other ways we’ll all need to communicate.

Right now I am in need of the following:

• Trustworthy people to volunteer admin time on the project once it’s up and running.
• Volunteers to provide input and configuration work to get the servers how we want them to be.  We have to figure out the most secure way to allow people to hack them, and also how to restore them back to a baseline within a reasonable amount of time.
• Legal advice concerning our intention to log some of the activity via a snort sensor.
• Hosting ideas, (CHEAP is good unless we magically stumble into some donations)
• Any other thoughts, input, etc.  I’m open to anything.

Thanks!