Context Security » 560

Associative Wordlist Generator (AWLG.org)

seth — Wed, 14 Jan 2009 15:37:41 +0000

Stumbled upon AWLG over at Darknet: http://www.darknet.org.uk/2009/01/the-associative-word-list-generator-awlg-create-related-wordlists-for-password-cracking/

This seems to follow nicely with the previous post referencing, CeWL. Also dovetails nicely with me currently listening to Day 4: Password Attacks of SANS 560: Network Penetration Testing and Ethical Hacking …

So what does AWLG do?

“The Associative Word List Generator (AWLG) is a tool that generates a list of words relevant to some subjects, by scouring the Internet in an automated fashion.”

The about page indicates that MySpace pages, Wikipedia articles, etc. are searched. That etc. is pretty important, but it is a fun tool to play around with. Although the same Darknet article makes mention also of Wyd, but I think AWLG is a nice addition as you don’t have to have already downloaded the files to be searched, and can instead rely on internet search engines. Likewise this tool has some facility beyond CeWL also, again because you don’t have to already know where the associated content can be found. All in all a nice addition to my kit.

Also worth mentioning is that the stated privacy policy for AWLG to “not record any transmitted search strings or user information”

Definitely check out the cute stick figure animated explanation of AWLG – pretty funny: http://www.awlg.org/whatis.gen

Ed Skoudis’ “Secrets of America’s Top Pen Testers”

seth — Fri, 09 Jan 2009 01:26:58 +0000

Ed Skoudis sent a tweet yesterday announcing the immediate availability of his presentation from SANS CDI: Secrets of America’s Top Pen Testers. Obviously you will not get the full effect without Ed’s contagious excitement, but the 38 slides do stand on their own well. He is quick to point out (via the subtitle) that he did not name the presentation…

10 nicely presented tips (with Ed’s signature black hat red screened goodnes) at no charge…

http://www.inguardians.com/research/docs/Skoudis_pentestsecrets.pdf

2009 Trends in Network Security

seth — Wed, 17 Dec 2008 19:51:02 +0000

Just received an email pitching the Community SANS SEC560 course that I will teaching in February 2009. Glad I opened and read it, as I was informed that I will be giving a one hour webcast on 2009 Trends in Network Security. Good to know

Here are the details:

SANS would like to give you a free sample of the training you will receive from the Community SANS Atlanta event. On Wednesday, January 14, we will host a free one hour webcast delivered by Community SANS instructor Seth Misenar entitled “2009 Trends in Network Security”. To register for this free webcast, please email community@sans.org and we will provide you with the registration details.

As always, please feel free to use my discount code, COINS-SM, for an upto an additional 15% off the cost of this or any Community SANS class.

Community SANS Atlanta 2009

seth — Tue, 16 Dec 2008 03:10:01 +0000

Seth Misenar will be teaching SANS 560: Network Penetration Testing and Ethical Hacking at Community SANS Atlanta 2009.

SEC560: Network Penetration Testing and Ethical Hacking
2/2/2009-2/7/2009

Discount Code:
COINS-SM
15% discount for SANS Alumni
10% discount for anyone