| |||||
| |||||
Search Irongeek.com:
Help Irongeek.com pay for bandwidth and research equipment: |
John Strand gave this presentation for the
Kentuckiana ISSA at the Louisville Infosec 2008 conference. He gives a
fascinating talk about why "security in depth" is dead, and lives again. John
then goes on to demo Evilgrade, using msfpayload and obscuring it against
signature based malware detection, dumping SAM hashes with the Metasploit
Meterpreter and using a patched Samba client to pass the hash and compromise a
system. I'd like to thank John for letting me record his talk.
15 most recent posts on Irongeek.com:
|
If you would like to republish one of the articles from this site on your
webpage or print journal please contact IronGeek.
Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast