A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
ISDPodcast Button
RootSecure Button
Social-engineer-training Button
Irongeek Button

Web Hosting:
Dreamhost Logo
Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Passive Aggressive Defense - Jason Clark Derbycon 2013 (Hacking Illustrated Series InfoSec Tutorial Videos)

Passive Aggressive Defense - Jason Clark
Derbycon 2013

Description: “As an industry, we’re still fighting amongst ourselves about whether or not we should hack back when a zombie machine starts brute forcing our web server. As a group, we’re all in agreement that pwned servers need to be removed from the net immediately and the admins server license revoked. While the legalities of hackback are being fought out, we’re left with no real recourse outside of firewall rules and IPS filters. I’m attempting something slightly different. Using open source tools, tiny shell scripts and peer pressure I’m attempting to shame server admins around the world into stepping up their game.”

Bio: Jason is a security wonk from the middle of america. He spends his days on the blue team, his nights hacking embedded devices and most of the spring chasing tornadoes. You can follow his security ramblings on twitter at @ScratchHax and his DIY/Making and tornado chasing at @FearThePenguin

Back to Derbycon 2013 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2014, IronGeek
Louisville / Kentuckiana Information Security Enthusiast