[Meeting] 11-07-2012

Good afternoon SIT’ers!

At tonight’s meeting, we’ll cap off the “passive” portion of our Recon series, and then move into active scanning.

We’ll start off the discussion with a short presentation and demos of basic dnsrecon usage. Following that, we’ll have a Q&A session and some hands-on time.

For the last half of the meeting, Gabriel will present on basic usage of nmap. He’s also agreed to show us a couple of demos.

!!! FREE FOOD !!! Pizza and soda will be provided at this meeting, courtesy of the ACM

[Stuff to bring] You will need a computer for this meeting - Linux or Linux VM (like Samurai-WTF or BackTrack)

Tools: dnsrecon: https://github.com/darkoperator/dnsrecon/archive/master.tar.gz nmap: Your distribution’s repo, or http://nmap.org/download.html

[Ethics Agreement] Just a reminder… if you haven’t yet signed an the ethics agreement posted at http://ufhack.org/ethics/, please bring a copy of the agreement, printed out and signed, to tonight’s meeting.

[Time and Location] Wednesday 7:15PM - 9:00PM 1151 McCarty Hall A http://campusmap.ufl.edu/?loc=0495



[Meeting] 10-24-2012

Good morning SIT’ers!

Last week, you got a taste of some pretty basic Recon tactics. We did a little bit of manual web crawling, domain and IP resolution… and a few of you found interesting Best Buy locations on farms in Iceland?

Near the end of the meeting, we released a “tool pack” containing the following tools: - recon-ng - pushpin v1 (v2 released this past weekend) - fierce domain scan - dnsrecon (blank directory, couldn’t provide due to dead link on dev’s site)

So… this week, it’s Tool Time™! We’re going to show you a short demo of the first two tools. Then, we’ll give you some hands-on time.

Stuff to bring You will need a computer for this meeting - Linux or Linux VM (like Samurai or BackTrack)

Ethics Agreement Just a reminder… if you haven’t yest signed an the ethics agreement posted at http://ufhack.org/ethics/, please bring a copy of the agreement, printed out and signed, to Wednesday’s meeting.

Time and Location Wednesday 7:15PM - 9:00PM 1151 McCarty Hall A http://campusmap.ufl.edu/?loc=0495


[Meeting] 10-17-2012

Good afternoon, SIT’ers!

This week’s meeting will again center around the Discovery/Recon phase of penetration testing. In this session, we’ll teach you some of the tools and techniques that you can use while performing reconnaissance on your target(s).

Recon is one of the most essential (and often times one of the most time consuming) parts of a penetration test. This is where you really learn about your target(s). + Topics we hope to cover: - Footprinting - Scanning and Enumeration - Vulnerability Analysis

If you need any help (Linux, VM, or life in general), or cannot attend, please contact me off-list (send me an email directly).

ITSA Day CTF For those who were not aware, on Wednesday 10-10-2012 UF had its 2012 edition of the ITSA day (http://www.itsa.ufl.edu/). Along with the very exciting presentations, the Office of Information Security & Compliance held its first CTF! Not only did the SIT staff get to help with managing the event and creating some of the challenges (if you suffered with them, you can blame Mauricio and me!), but some of you played in the event (and did rather well). Thanks to those SIT’ers who represented… you know who you are!

We will spend a bit of time talking about this event, maybe even persuading those of you who played for feedback.

Ethics Agreement Just a reminder… if you haven’t yest signed an the ethics agreement posted at http://ufhack.org/ethics/, please bring a copy of the agreement, printed out and signed, to Wednesday’s meeting.

Please note day and time change below

We are meeting in the same location but a bit later.

Time and Location Wednesday 7:15PM - 9:00PM 1151 McCarty Hall B http://campusmap.ufl.edu/?loc=0495


[Meeting] 10-08-2012

Good morning, SIT’ers!

Tonight’s meeting will center around the Discovery/Recon phase of penetration testing. In this session, we’ll teach you some of the tools and techniques that you can use while performing reconnaissance on your target(s).

Recon is one of the most essential (and often times one of the most time consuming) parts of a penetration test. This is where you really learn about your target(s).

  • Topics we hope to cover:
  • Footprinting
  • Scanning and Enumeration
  • Vulnerability Analysis

Ethics Agreement At this meeting, you will also be required to agree to and sign the Ethics Agreement posted at http://ufhack.org/ethics/ Please bring a copy of the agreement, printed out and signed, to tonight’s meeting. In the near future, we’ll begin checking to make sure everyone attending has signed off on it.

Location and time 6:30PM - 8:30PM 1151 McCarty Hall A http://campusmap.ufl.edu/?loc=0495