Tips from a Network Detective

Put your detective hat on your head and your Network Detective badge on your lapel. It’s times for another installment in the Network Detective Series.

Are we going on our first “case” together? Nope. Not just yet.

In this series I’m not going to be able to always call out every time my “techniques” and “methodologies” steer me one way or the other on a case. But over time you will notice there is a thread in there. A guiding framework and methodology.

So before we go on our first “case” together… I want to pass on to you what are really my major guiding principles for when I’m on a case. The “TOP” tips that I think have the biggest return on your time investment as a Network Detective.

Be Methodical
Know What is Normal (Knowledge is Key)
Get to the “Crime Scene” as Fast as You Can
Have “Crime Scene Maps” that Help and don’t Hinder
Let the Clues and Evidence Guide You
Learn and Improve

Tip #1: Be Methodical

Detection is, or ought to be, an exact science and should be treated in the same cold and unemotional manner.

-Sherlock Continue reading

IDG Contributor Network: Wi-Fi 911: Running with scissors?

Emergency 911 services first materialized in the United States when the Alabama Telephone Company established the service in the sleepy little town of Haleyville on Feb. 16, 1968. At that time, phone companies knew the installation address and phone number of each and every telephone device, and calls were routed based on this information. While seemingly unsophisticated by today’s standards, at the time, it was considered quite a feat of engineering.The process remained valid until Sept. 21 of 1983 when the world changed forever. In a historic decision by the Federal Communications Commission, the Motorola 8000X, the world's first commercially available portable cell phone, was approved for service and personal mobility took on a brand-new meaning. What was the cost of this miraculous technology? For just under $4,000, consumers could ‘cut the cord’ that tethered them to the wall -- a small price to pay for a device that would revolutionize and redefine telecommunications history.To read this article in full or to leave a comment, please click here

Hackers breach social media accounts of Mark Zuckerberg and other celebrities

Over the weekend hackers managed to access Facebook founder Mark Zuckerberg's Twitter and Pinterest accounts, as well as the social media accounts of other celebrities. Someone posted to Zuckerberg’s Twitter feed on Sunday, claiming to have found his password in account information leaked from LinkedIn. A group calling itself the OurMine Team took credit for breaking into Zuckerberg's Twitter, Pinterest and Instagram accounts, but there's no evidence that the Instagram account has been breached. "You were in LinkedIn Database with password 'dadada'," read a message supposedly posted by hackers from Zuckerberg's @finkd Twitter account. To read this article in full or to leave a comment, please click here

Hackers breach social media accounts of Mark Zuckerberg and other celebrities

Why legal departments begrudge the cloud

Legal professionals are by their nature a skeptical and cautious lot, but the sharp rise in cloud-based applications being used by enterprises and law firms, as well as recent high-profile law firm security breaches, has many legal professionals reticent about entering cloud engagements.“The buck stops with the lawyer,” says Michael R. Overly, a partner and intellectual property lawyer focusing on technology at Foley & Lardner LLP in Los Angeles. “You’re trusting the [cloud provider] with how they manage security,” and yet their contract language excuses them from almost all responsibility if a security or confidentiality breach occurs, he says. “One can’t simply go to clients or the state bar association and say the third party caused a breach, so it’s really not our responsibility.”To read this article in full or to leave a comment, please click here

10 security Ted Talks you can’t miss

Security talksImage by ThinkstockWe know you’re busy, that’s why we invested the time to find you the 10 Security TED talks that you really can’t miss. These talks tackle some of the biggest security challenges of our time, from securing medical devices to how cyber-attacks can threaten world peace. Some of them will be given by security experts you know, and other talks here by those who may be new to you. Some are recent, others were recorded years ago, but are just (if not more) relevant today. We think you’ll be better for having taken the time to listen and consider their messages.To read this article in full or to leave a comment, please click here

Every Product Needs to Scale… to a Point

Long time ago in a podcast far far away Greg and Ethan pondered whether networking solutions need to scale or not, and obviously one cannot disagree with their generic conclusion that enterprises need just-good-enough solutions and not Google-scale architectures.

However, do keep in mind that:

Cloud Storage: 7 Key Considerations

Keeping data stored in a hybrid cloud requires careful planning. Here's what to keep in mind.

The Next-Gen Network Engineer

As networks become more defined by software, so too will the engineers that run them.

New products of the week 6.6.16

New products of the weekOur roundup of intriguing new products. Read how to submit an entry to Network World's products of the week slideshow.IntellaFlex HyperEngine Packet ProcessorKey features – APCON’s HyperEngine monitoring solution supports up to 200Gbps throughput and provides a set of monitoring services including ultra-fast deduplication and NetFlow at hyperspeed, with additional features coming later in 2016. More info.To read this article in full or to leave a comment, please click here

New products of the week 6.6.16

Buyer’s Guide to 9 multi-factor authentication products

Multi factorsSince we last reviewed two-factor authentication products, the market has moved beyond two-factor authentication toward what is now being called multi-factor authentication. One of the key features being new types of hardware-based tokens. Here are individual reviews of nine MFA products. See the full review.To read this article in full or to leave a comment, please click here

9-vendor authentication roundup: The good, the bad and the ugly

Due to numerous exploits that have defeated two-factor authentication, either by social engineering, remote access Trojans or various HTML injection techniques, many IT departments now want more than a second factor to protect their most sensitive logins and assets.In the three years since we last reviewed two-factor authentication products, the market has responded, evolving toward what is now being called multi-factor authentication or MFA, featuring new types of tokens.For this review, we looked at nine products, five that were included in our 2013 review, and four newcomers. Our returning vendors are RSA’s Authentication manager, SafeNet’s Authentication Service (which has been acquired by Gemalto), Symantec VIP, Vasco Identikey Authorization Server, and TextPower’s SnapID app. Our first-timers are NokNok Labs S3 Authentication Suite, PistolStar PortalGuard, Yubico’s Yubikey and Voice Biometrics Group Verification Services Platform.To read this article in full or to leave a comment, please click here

5 trends shaking up multi-factor authentication

Perhaps the biggest surprise in our review of nine multi-factor authentication products is that physical tokens are making a comeback. Many IT managers were hoping that software-based tokens, which are easier to deploy and manage, would make hardware tokens extinct.In our review three years ago of two-factor authentication products, the hot new approach was using smartphones as an authentication method via soft tokens, which could be a smartphone app, SMS message or telephony.To read this article in full or to leave a comment, please click here(Insider Story)

IPv6 Progress Report: Going Mainstream

Akamai data provides view into IPv6 adoption since World IPv6 Launch in 2012.

9-vendor authentication roundup: The good, the bad and the ugly

5 trends shaking up multi-factor authentication

Buyer’s Guide to 9 multi-factor authentication products

Instrumenting masscan for AFL fuzzing

This blog post is about work in progress. You probably don't want to read it.

So I saw this tweet today:

Fuzzing masscan by @ErrataRob with AFL by @lcamtuf.
Forgot to remove the crash-handler so crashes logged as hangs. pic.twitter.com/Yh5ElNyvOm
— Dr David D. Davidson (@dailydavedavids) June 5, 2016

As it turns it, he's just fuzzing input files. This is good, he's apparently already found some bugs, but it's not a huge threat.

Instead, what really needs to be fuzzed is network input. This is chronic problem with AFL, which is designed for inserting files, not network traffic, into programs.

But making this work is actually pretty trivial. I just need to make a tiny change to masscan so that instead of opening a libpcap adapter, it instead opens a libpcap formatted file.

This change was trivial, successfully running it is tough. You have to configure the command-line so all IP addresses match up with the libpcap file content, which is a pain. I created a sample lipcap file and checked it into the project, along with a help document explaining it. Just git clone the project, run make, then run this command line to see it Continue reading

A former NASA chief just launched this AI startup to turbocharge neural computing

A new company launched Monday by former NASA chief Dan Goldin aims to deliver a major boost to the field of neural computing.KnuEdge's debut comes after 10 years in stealth; formerly it was called Intellisis. Now, along with its launch, it's introducing two products focused on neural computing: KnuVerse, software that focuses on military-grade voice recognition and authentication, and KnuPath, a processor designed to offer a new architecture for neural computing.To read this article in full or to leave a comment, please click here

« Previous 1 … 2,926 2,927 2,928 2,929 2,930 … 3,852 Next »