Daily Dave

Syndicate content
This technical discussion list covers vulnerability research, exploit development, and security events/gossip. It was started by ImmunitySec founder Dave Aitel and many security luminaries participate. Many posts simply advertise Immunity products, but you can't really fault Dave for being self-promotional on a list named DailyDave.
Updated: 1 min 17 sec ago

Re: "Defending Forward" in time

24 January, 2020 - 11:08

Posted by John Lampe on Jan 24

imo, it's a general mentality that attackers have. I blogged about this 14
years ago and it seems still applicable today (
https://blogs.securiteam.com/index.php/archives/170 )

Indecision can stem from too little information or too much information.
The defender *should* have the ability to influence both of those...

John

"Defending Forward" in time

24 January, 2020 - 10:28

Posted by Dave Aitel on Jan 24

So I went to S4 this week, which is a good conference here in Miami Beach,
mostly about hacking/protecting utilities and other critical infrastructure
components. But I had the good fortune to run into a friend
<https://www.gocomics.com/calvinandhobbes/2018/01/16> I'd never met before.
Anyways, they were telling me about how some Android State surveillance
spyware installed at the border on everyone's phone looked for some file...

Reverse Engineering LOLs

16 January, 2020 - 14:58

Posted by Dave Aitel on Jan 16

If you've ever rolled with a world-class black-belt you know that no matter
how hard you are trying, they catch submissions seeming effortlessly. They
simply have a different understanding of space and movement and momentum
than you do. And the same thing is true in the cyber operations field. In
this way, the movies get the emotions around hacking completely wrong, the
dark room, the "I'm IN!" moment, the tension.

When you...

Knock knock, Neo.

14 January, 2020 - 11:02

Posted by Dave Aitel on Jan 14

I rewatched The Matrix recently with my kids. It holds up through the test
of time, like a few movies do, but which obviously Star Wars will not. I
gave my kids $40 to go watch the Rise of Skywalker and they decided to go
get ice cream and play TF2 instead, as a metric for cultural lock-in.

There's a lot of flashy fighting in The Matrix, none of which interests
kids above the age of 8, since they have seen every variation on superhero...

YSTS 14th Edition - Call for Papers

23 December, 2019 - 13:49

Posted by Luiz Eduardo on Dec 23

Where: Sao Paulo, Brazil

When: May 25th, 2020

Call for Papers Opens: December 15th, 2019

Call for Papers Close: February 29th, 2020

http://www.ysts.org

@ystscon

ABOUT THE CONFERENCE

you Sh0t the Sheriff is a very unique one-day, one-track event dedicated to
bringing cutting edge infosec content to the top-notch

professionals of the Brazilian Information Security Community.

YSTS is a an exclusive, invite-only security conference, usually...

Ghidra! Ghidra! Ghidra!

12 December, 2019 - 11:31

Posted by Dave Aitel on Dec 12

Here is a video I was watching today that you should also watch:
https://vimeo.com/335158460

So I know a lot of people on the list already KNOW AND USE Ghidra. But my
fav. classes are ones that scale from both beginners to advanced users
because they go into how a particular team does something that you already
might do, but in a different (and sometimes much better) way.

A question I always have in my head is "Can this random process we...

Re: The Source

3 December, 2019 - 11:27

Posted by Dave Aitel on Dec 03

Just to follow up on this post (originally from 2014) :)
-https://twitter.com/matthew_d_green/status/1201895122306252800?s=20
[image: image.png]

Re: Longer form questions

2 December, 2019 - 11:05

Posted by Akendo on Dec 02

Hey guys,

thanks for this intriguing discussion! I try to get into it and hope
that I got it correctly, I'm going to answer a bit out of the blue here.
So please be nice to the rookie here!

However, I was wondering what the bottom line here is. NIDS is dead and
how does this annoy Rob? (References are welcomed). Should we throw out
any NIDS now and jump onto the metadata train?

I try to get into the discussion here by taking the opposite...