NOTE: Our streaming method has changed as of episode, and is reflected in the links below.

The 100th episode of PaulDotCom Security Weekly, W00t! There will be much rejoicing, the Skype lines will be open, we have multiple audio clips to play, and this just in, Bob's true identity revealed!

The live stream should be active about 6:30-7:00 PM EST, Thursday February 28th. We should begin recording the live show at about 7:00 PM EST. Please keep in mind that these times are all estimates, but we will try to do the best that we can.

Don't forget to join in on the IRC channel during the stream - we can take live comments and discussion from the channel! Find us on IRC at irc.freenode.net #pauldotcom.

Don't forget, this is a call in type event! We will have Skype active (id "pauldotcom"), or call in to 401-626-4636!

We using Ustream.tv for this and future episodes (now with video!). We understand the importance of this monumental event, and we will be attempting to make both audio streams available for this episode.

When active, the live stream(s) can be found at:

Ustream: http://ustream.tv/channel/pauldotcom-security-weekly

Icecast: http://radio.oshean.org:8000

Please join us, and thanks for listening!

- Larry & Paul

This is the first webcast in a monthly webcast series that we are putting on, so bear with us while we work out all of the logistics. I wanted to share the direct registration link:

Late Breaking Computer Attack Vectors - Feb 27 2:00PM EST

I am very excited about this new opportunity and hope you are able to listen in!

Cheers,

PaulDotCom

All:

I recently spoke for the SNENUG (Southern New England Network Users Group) and gave a short presentation on penetration testing. I introduced the basic concepts, steps, phases, and components of a penetration test. You can download the slides below:

Introduction To Penetration Testing

Enjoy!

PaulDotCom

PaulDotCom is proud to announce it has joined forces with SANS to bring three SANS short courses, all hands-on, to North Kingston, RI. These will likely be the most enjoyable short courses SANS you have ever taken! We have hand picked these courses for your benefit, offering them in a series that is certain to increase your knowledge and awareness surrounding the latest security topics.

Registration for these training courses can be found on the SANS Institute web site by following the links below.

SEC452 IP Packet Analysis
Instructor Larry Pesce from Care New England
February 26th, 2008 (3.5 hour course)
9:00AM-12:30PM
Registration & Course description

SEC514 Advanced Network Worm and Bot Analysis - Hands On
Instructor Steve Marcelino from Care New England
March 25th, 2008 (1 Day Course)
9:00AM - 5:00PM
Registration & Course description

SEC517 Cutting-Edge Hacking Techniques - Hands On (2-day)
Instructor Paul Asadoorian from OSHEAN, Inc.
April 15th-16th, 2008 (2 Day)
9:00AM - 5:00PM
Registration & Course Description

These training events will all be held at:

OSHEAN, Inc.
6946 Post Road
Suite 402
North Kingstown, RI 02852
Directions

Registration Discounts:

SANS offers a group discount rate for two or more individuals registering from the same organization. These course are more challenging and fun when you attend with a colleague. We also offer a special rate of $1,200 for attending all three classes. To obtain the discount code, you must send an email to mentor@sans.org requesting the code ***PRIOR TO*** registering for this course. We can not go back and re-register with the discount code once you have already registered.

Hope to see you all there!

PaulDotCom

PaulDotCom has teamed up with White Hat World to bring you a monthly 30-40 minute webcast titled "Late-Breacking Computer Attack Vectors". I will be hosting the technical discussions where I will b covering the trends happening in security for that month and defensive strategies. Details below:

When: February 27th 2:00PM EST (They will all occur on the last Wednesday of each month at 2:00PM EST,with the exception of November 25, 2008 and December 23, 2008)

Who: Hosted by Paul Asadoorian from PaulDotCom Security Weekly

What Is It? This lively session will discuss recent and anticipated computer and network attack vectors, highlighting the current trends in information security and hacking. Understand some of the most powerful tools and methods in the bad guys' arsenal today, most importantly how to defend your network against them. For each attack vector, we will look at practical, real-world solutions for stemming the tide and keeping your network a safer place.

Registration: Please visit http://www.whitehatworld.com for more information.

We are very excited about this opportunity and I also hope to release these as a podcast as well.

PaulDotCom

All:

If you are experiencing problems with episode 99, please delete the podcast from iTunes and re-add it. It seems that Libsyn and iTunes got stuck indexing only the first 9 seconds of the podcast. I think this is because I ran out of space on my Libsyn account, which I have since upgraded. Please contact us if you hasve any problems.

Thank You,

PaulDotCom

Paul is live from the PaulDotCom Security Weekly Studio, and Larry is live from Shmoocon! Get the latest information from the hottest security conference this year!

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

Just as a reminder Larry will be at Shmoocon this weekend in chilly Washington DC. Don't forget to check our the podcasters meet up Friday night. It is our understang that we'll be doing a video cast, and streaming live courtesy of the geeks at Hak.5. Stay tuned for more details as they unfold.

Larry has a limited supply of some shwag, but plenty of stickers!

Additionally, the PaulDotCom crew will be recording an episode on Saturday Feb, 16 at about 6:30 PM.

Don't forget to join in on the IRC channel during the stream - we can take live comments and discussion from the channel! Find us on IRC at irc.freenode.net #pauldotcom.

When active, the live stream can be found at:

http://radio.oshean.org:8000

Please join us, and thanks for listening!

All:

We have created a promotion video for the SANS course I authored called "SEC535 - Network Security Projects Using Hacked Wireless Routers":

Sign up for this course today:

SANS Orlando (Comes with your very own copy of Linksys WRT54G Ultimate Hacking by Paul Asadoorian and Larry Pesce!

If you are interested in this course and cannot attend the Orlando conference please contact me (paul /at/ pauldotcom.com) for more information.

PaulDotCom

All:

Larry and myself have many conversations about how to best communicate with our listeners, send/receive feedback, and generally what our presence on the Internet should be. We've created a mailing list with the following intentions:

• General Questions/Feedback - Please do still send email to psw /at/ pauldotcom.com, however Larry and I are sometimes busy and do not get a chance to respond to all emails. This mailing list can serve as a place to post questions, feedback, or general comments and the hope is that if Larry or myself can't respond, someone else will.
• Announcements - Yes, we have a blog, podcast, and multiple RSS feeds. However, some just prefer to have a mailing list that keeps them current. We intend to use the list to announce episodes, locations where we are recording live, contests, and everything related to PaulDotCom!
• Technical Discussion - We hope that the discussions on the mailing list will be as technical and informative as the podcast and to a certain extent the IRC channel. Our goal is to keep everyone educated and allow you to learn about computer security and hacking, and hopefully the mailing list helps you do that

So come join now!

PaulDotCom

Live from the PaulDotCom Security Weekly Studio with our very own "reverse engineering specialist", the baby maker from Canada himself, Justin Seitz!

In part II of this episode we first have an awesome discussion about how broken the information security industry is right now and offer some advice on how to fix it, then cover the stories for the week.

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

Just a quick notice to all listeners that we will not be recording the week of February 4, 2008. Our short little hiatus will be just that, short. We are releasing episode 98 in two parts as it was a two hour show, full of glorious security karma. Also filling the the gaps is my keynote presentation on hacking embedded devices which is always a treat.

Looking ahead we are planning a special 100th episode where we hope to have participation from many of our dedicated and wonderful listeners and collaborators on the show. We may take a week off in order to prepare for this show as I believe that 100 episodes is quite a landmark achievement for PaulDotCom Security Weekly. Still to this day I am astonished at what we have created. Don't worry we have plenty of new, exciting, entertaining, and informative inititives up our sleeves so stay tuned! Along with a new web site in the works there may be some special annoucements regarding PaulDotCom as we move forward to reach out to new audiences and continue to grow.

As always, thank you for listening...

PaulDotCom

Live from the PaulDotCom Security Weekly Studio with our very own "reverse engineering specialist", the baby maker from Canada himself, Justin Seitz!

In part I of this episode we cover two technical segments, one by Justin on DLL injection, and one by PaulDotCom on hacking mDNS/Bonjour/Zeroconf.

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds: