Packet Blast: Top Tech Blogs, Aug. 19
We collect the top expert content in the infrastructure community and fire it along the priority queue.
IPv6 Performance – Revisited
Every so often I hear the claim that some service or other has deliberately chosen not to support IPv6, and the reason cited is not because of some technical issue, or some cost or business issue, but simply because the service operator is of the view that IPv6 offers an inferior level service as compared to IPv4, and by offering the service over IPv6 they would be exposing their clients to an inferior level of performance of the service. But is this really the case?EQGRP tools are post-exploitation
A recent leak exposed hackings tools from the "Equation Group", a group likely related to the NSA TAO (the NSA/DoD hacking group). I thought I'd write up some comments.Despite the existence of 0days, these tools seem to be overwhelmingly post-exploitation. They aren't the sorts of tools you use to break into a network -- but the sorts of tools you use afterwards.
The focus of the tools appear to be about hacking into network equipment, installing implants, achievement permanence, and using the equipment to sniff network traffic.
Different pentesters have different ways of doing things once they've gotten inside a network, and this is reflected in their toolkits. Some focus on Windows and getting domain admin control, and have tools like mimikatz. Other's focus on webapps, and how to install hostile PHP scripts. In this case, these tools reflect a methodology that goes after network equipment.
It's a good strategy. Finding equipment is easy, and undetectable, just do a traceroute. As long as network equipment isn't causing problems, sysadmins ignore it, so your implants are unlikely to be detected. Internal network equipment is rarely patched, so old exploits are still likely to work. Some tools appear to target Continue reading
VMware NSX Breakout Session Guide – Introductory, Intermediate, Advanced #VMworld 2016
The VMware NSX network virtualization platform is bringing game-changing capabilities and benefits to businesses and organizations across a wide spectrum of industries. We have sessions covering strategic initiatives like security, automation, and application continuity, as well as more tactical use cases like micro-segmentation, IT automating IT, disaster recovery, and more. On top of that, there are sessions covering the NSX platform and operationalizing NSX. These sessions are offered in a variety of formats and range from introductory sessions perfect for those new to NSX or network virtualization, to intermediate sessions that dive into the deeper technical aspects of NSX, to advanced sessions for NSX veterans and networking experts.
And I know you’ve heard me say this before…but take a look at the list of the breakout sessions below, and then check out the schedule builder on VMworld.com to organize your week.
We’re looking forward to seeing you at VMworld US 2016.
Monday, August 29
| Time | Level | Session ID | Session Title |
| 12:30 PM – 1:30 PM | Introductory | NET7834 | Introduction to VMware NSX |
| 12:30 PM – 1:30 PM | Introductory | NET8675 | The Practical Path to NSX |
| 2:00 PM – 3:00 PM | Introductory | SEC7836 | Introduction to Security with VMware NSX |
| 3:30 PM Continue reading |
New Dockercast episode with Ilan Rabinovitch from Datadog
In case you missed it, we launched Dockercast, the official Docker Podcast earlier this month including all the DockerCon 2016 sessions available as podcast episodes.
In this podcast we talk to Ilan Rabinovitch the Director of Technical Community at Datadog. I first met Ilan back at SCALE8X (Southern California Linux Expo) 6 years ago. Ilan has been running SCALE since it’s inception. 
As Ilan points out in the podcast, our very own Jérôme Petazzoni packed the house back at SCALE11x (2013). At Datadog Ilan has been working with the Docker community on monitoring containers and developing what Datadog calls their Monitoring-as-a-Service offering that combines Docker metadata and Docker container monitoring information. Ilan discusses some of the differences of monitoring containers versus virtual machines. We also talk about Datadog’s adoption surveys highlighting the unprecedented “wildfire” adoption of technology unseen since Linux and Apache. Hope you enjoy our conversation.
You can find the latest #Dockercast episodes on the Itunes Store or via the SoundCloud RSS feed.
New #dockercast episode w/ host @botchagalupe and @irabinovitch from @datadoghq as a guest!
Click To Tweet
The post New Dockercast episode with Ilan Rabinovitch from Datadog appeared first on Docker Blog.
Worth Reading: Reopening the going dark debate
The post Worth Reading: Reopening the going dark debate appeared first on 'net work.