InfoSec Philippines

Information Security, Technology News and Opinions

Categories
- (ISC)²
- Annual Security Reports
- Anonymization
- Anti-Malware
- Awareness
- Career
- Certification
- Change Management
- Compliance
- conferences
- DOS
- El Sibakero
- encryption
- Free
- Glossary
- Home Grown Apps
- Incident Management
- ISMS
- Lean IT
- Legal
- malware
- Malware Analysis
- Metrics
- News
- Opinion
- Philippines
- Presentations
- Privacy
- Security Policy
- seminars
- Site News
- social engineering
- Social Networking
- Survey
- tools
- vulnerability
- vulnerability assessment
- Webinars
- Whitepapers
- Windows
- Wireless
Archives
Pages
Subscribe
- Entries (RSS)
- Comments (RSS)

Twitter Updates
- Inaudible ultrasound attack can stealthily control your phone, smart speaker bleepingcomputer.com/news/security/… 16 hours ago
- Microsoft pushes OOB security updates for Windows Snipping tool flaw bleepingcomputer.com/news/microsoft… 18 hours ago
- New CISA tool detects hacking activity in Microsoft cloud services bleepingcomputer.com/news/security/… 2 days ago
- Mandiant: Move, Patch, Get Out the Way: 2022 Zero-Day Exploitation Continues at an Elevated Pace mandiant.com/resources/blog… 3 days ago
- Should the US ban TikTok? Can it? A cybersecurity expert explains the risks the app poses and the challenges to blo… twitter.com/i/web/status/1… 3 days ago
2008 2009 27001:2005 A.9 27001:2005 A.11.7.1 A.11.7.1 Antivirus apple ATM botnet bpo Breach browser security Citibank clickjacking comelec conference conferences conventions Cybercrime DDOS E&Y e-mail encryption ENISA Facebook fbi Forensics Free Friendster hacking IE Intel iphone ISACA key logger log management Mac malware Manila Metrics Microsoft Mobile Security News nmap Nokia obama patch patch tuesday pci compliance Philippines Physical Security Podcasts/Webcasts Presentations proxy SANS secure coding Security seminars social engineering Social Networking software vulnerability Survey tools Tor trojan vlc vulnerability web application Webinars Whitepapers Windows Wireless worm wpa zero day

Posts Tagged ‘2008’

SANS 2008 Salary and Certification Survey

Posted by Jaime Raphael Licauco, CISSP, GSEC on March 11, 2009

The SANS Salary and Certification Survey which was conducted in November 2008 with a total of 2,120 respondents, came out early last month with the following conclusion:

“Despite the current economy, the demand for qualified information security professionals is predicted to increase through 2016, according to the Bureau of Labor Statistics. Those with formal education and professional certifications have the best opportunities to advance their careers as well as their salaries.

Security threats reached their highest levels in 2008 and are predicted to increase in 2009. With external as well as internal threats, commercial organizations, financial institutions, state and local governments and the military will continue to require qualified information security professionals to protect their systems and data. With an average entry-level (0 – 2 years of experience) salary of $70,807, security professionals are expected to hold a certain level of education, certifications, and experience as well as pursue a variety of informal and formal continuing education efforts to stay current in the industry.”

Check out the SANS 2008 Salary and Certification Survey here.

Posted in Certification, Survey | Tagged: 2008, Certification, Education, Salary, SANS, Survey | Leave a Comment »

Hack in The Box Conference 2008 Materials

Posted by Jaime Raphael Licauco, CISSP, GSEC on December 1, 2008

Amitpal Dhillon – Addressing Identity Management.pdf 3.7M

Dino Dai Zovi – Mac OS Xploitation.pdf 623K

Ero Carrera – Analysis and Visualization of Common Packers.pdf 3.7M

Hernan Ochoa – Pass-The-Hash Toolkit for Windows.pdf 535K

Jim Geovedi – Hacking a Bird in the Sky 2.0.pdf 3.1M

Julian Ho – Moocherhunter.pdf 124K

Peter Silberman – Full Process Reconstitution from Memory.pdf 144K

Alexander Tereshkin – Bluepilling the Xen Hypervisor.pdf 8.3M

Alexander Tereshkin – Bluepilling the Xen Hypervisor Demo (Large File) 142M

Eric Lawrence – IE 8 – Engineering a Trustworthy Browser.pdf 13M

Jonathan Squire – A Fox in the Hen House.pdf 3.5M

Paul Craig – Hacking Internet Kiosks.pdf 1.2M

Roberto Preatoni – Time for a Free Hardware Foundation.pdf 11M

Saumil Shah – Browser Exploits – A New Model for Browser Security.pdf 2.1M

The Grugq – How the Leopard Hides His Spots.pdf 01-Nov-2008 12:39 128K

Mel Mudin and Lee – Advanced Network Forensics Lab Demo (Large File) 29M

Charlie Miller – iPwning the iPhone.pdf 9.8M

Charl van Der Walt – Pushing the Camel Through the Eye of a Needle.pdf 23M

Ilfak Guilfanov – Decompilers and Beyond.pdf 418K

Kris Kaspersky – Remote Code Execution Through Intel CPU Bugs.pdf 1.3M

Petko D Petkov – Client Side Security.pdf 1.0M

AR Samhuri – Next Generation Reverse Shell.pdf 7.7M

Adrian Pastor – Cracking into Embedded Devices and Beyond.pdf 889K

Mary Yeoh – Security Penetration Testing at RTL Level.pdf 4.4M

Matthew Geiger – How to Build Your Own Password Cracker and Disassembler.pdf 471K

Shreeraj Shah – Top 10 Web 2.0 Attacks.pdf 1.1M

Advanced Wireless Lab (Very Large File) 1.2G

Ching Tim Meng – Detecting and Removing Malware without Antivirus Software.pdf 321K

KEYNOTE 1 – Jeremiah Grossman – The Art of Click-Jacking.pdf 2.5M

KEYNOTE 2 – Marcus Ranum – Cyberwar is Bullshit.pdf 54K

KEYNOTE 3 + 4 – The Pirate Bay Dissolving a Billion Dollar Industry as a Hobby.zip 38M

Posted in conferences, News, Whitepapers | Tagged: 2008, apple, click-jacking, clickjacking, conference, Forensics, hackin the box, hacking, internet kiosks, iphone, leopard, Mac, OS X, satellite | Leave a Comment »

Black Hat Japan 2008 Presentations

Posted by Jaime Raphael Licauco, CISSP, GSEC on November 25, 2008

Keynote – Black Ops of DNS 2008 : Its The End Of The Cache As We Know It by Dan Kaminsky

API sysenter hooking by Kenji Aiko

Understanding Targeted Attacks with Office Documents by Bruce Dang

Get Rich or Die Trying – “Making Money on The Web, The Black Hat Way” by Arian Evans

Cyberspace and the Changing Nature of Warfare by Kenneth Geers
Presentation Slides, Whitepaper

Attacking with Character Encoding for Profit and Fun by Yosuke Hasegawa

“FFR EXCALOC” Exploitability by Toshiaki Ishiyama

Threat Gallery of Japanese Landscape by Hiroshi Kawaguchi

The Internet is Broken: Beyond Document.Cookie – Extreme Client Side Exploitation by Nathan McFeters

Owning the Fanboys: Hacking Mac OSX by Charlie Miller

Satan is on My Friends List: SNS Survey by Shawn Moyer & Nathan Hamiel

Exploiting Symbian OS in mobile devices by Collin Mulliner

A Hypervisor IPS based on Hardware Assisted Virtualization Technology by Junichi Murakami
Presentation Slides (EN), Whitepaper

Disclosing Secret Algorithms from Hardware by Karsten Nohl

ePassports Reloaded by Jeroen van Beek

Posted in conferences | Tagged: 2008, algorithm, api, black hat, cache, Character Encoding, conferences, conventions, cyberwar, epassport, FFR Excaloc, hardware, hooking, hypervisor, ips, japan, Mac, ms office, OSX, sns, symbian, sysenter | Leave a Comment »