Hit | 18 Oct 09

{ October 18, 2009 @ 3:15 am } · { HackinTenz }
{ Leave a Comment }

News Feeds:
There are better and more secure way to get you banking online activities from any malware threats.

http://voices.washingtonpost.com/securityfix/2009/10/avoid_windows_malware_bank_on.html

Update on my Pen-Test Tools & VA Techniques:
[OpenDPI] Just recently, a new open source DPI (Deep Packet Inspection) tool was released to user for a test. A tool called OpenDPI which has the capabilities to inspects packet in terms of its protocols based on the apps usage. The tool could also detect packets based on bit torrent, IM messenger and many others. For those who like DPI research and as I’m , a pen-tester, this tool can be useful in packet analysis.
Visit this Link

My Projects:
Within this month of October 2009, my plans is to get myself familiar with Secure Code Analysis using Fortify 360/SCA. Recently, I attended a 3 days training on this application which focused on inspecting vulnerabilities on web application coding especially on JAVA programming codes. By assessing the code using several CVE baseline such as OWASP.

As the mean time, I was proposed by my colleague to present on Fundamental of ICT Security topic. The date not yet announced which will maybe around 2nd half of November 09. So, I were expected to be ready with slides before that day. And so, i need some of my time, doing side researches for the presentation materials. Maybe, I will post my brochure to attend my talks on IT Security in this blog later.

Saturday | 17 Oct 09

{ October 17, 2009 @ 1:03 pm } · { Uncategorized }
{ Leave a Comment }

Weekends has arrive again and this time, Deepavali festival celebration. Happy Deepavali to all Malaysian and have great weekends. This 2 days, I spend my weekends going back to my hometown, have a short visit to my parents and my little brother.

I just finished my exam on Fortify product which has a great capabilities on programming code analysis and vulnerabilities assessment. The product is well known by secure coding programmers and developer that practice secure coding in their SDLC (Secure Development Life Cycle).

Unfortunately, the training is too much for my brain to process in a short time. Luckily, I planned to study the product inside and outside starting next week and try to pass the product overview exam. At the same time, I can study on how secure coding were practice and learn on Web apps security/Pen-Test. At least, I can prepared my knowledge for attending my next training on Web Apps Penetration Testing. Hope to see my 2nd “Tok Guru”, Kevin Johnson. Gambate!

HiT | 12 Oct 09

{ October 12, 2009 @ 6:24 am } · { HackinTenz }
{ Leave a Comment }

Lifehacker just posted recently on Windows Task Manager and which one is the best suite for you convenient. From out of five, I prefer the Process Hacker because of its name and also its capabilities. The others were also better and good for usage. Find out more on the info in this link.
Visit this Link

Fences – Windows Desktop Customs
Fences has updated to version 1.0. Those who like fences like me, go ahead and download the updated ones. Just FYI, Fences is a great tools to categories and handling the organizations of you icons in your desktop screens.
Visit this Link

Disk2vhd – Create a clone of you OS and run in VM Environment
This tools has the capabilities to copy and create a virtual machine environment just by capturing the data inside your main OS drive. I once try this tools to create a same environment of my desktop in my lab virtual machines. Useful and easy. Check it out!.
Visit this Link

Smart Phone Tips and Tricks – Saving Battery Energy
I’m a smart phone user which I’m using Windows Mobile 6.1 under O2 phone. It is fun and easy to use. I’m very fascinate with the touchy screen. But at the end, all of that, drain your battery. Here some tips that can help you with that.
Visit this Link

Saturday | 10 Oct 09

{ October 10, 2009 @ 12:28 pm } · { BedTime Story }
{ Leave a Comment }

I’m back again!. Sorry for long time not updating my personal blog. Some of closes friends keep reminding me to update my blog always due because they so far away and want to keep track on my day to day activities. YES as you know it, I been busy with all my outside and daily job activities that yet meeting the end.

As I’m back again activating my small world of blogging, I would like to thank you KPM Beranang for giving me a great opportunity by inviting me to give a morning talk on IT security (Network Security Essential) for the staff and students. I also would like to thank T&O for trusting me on sharing my thoughts with the public and show the capabilities me as an free IT Security Presenter/Practitioner. I promise to keep up a good work and improved my skill in public speaking.

If still not to late, I would like to wish everyone, my family and friends, Selamat Hari Raya Aidilfitri and coming Selamat Hari Deepavali. As both is on a good mood of celebration, let’s all united and enjoy a great weekends. UNITED, WE STAND!

Sunday | 3 May 2009

{ May 3, 2009 @ 11:06 am } · { BedTime Story }
{ Leave a Comment }

I been out yesterday watching X-Men Origins: Wolverine. The story were quite action trilling. But, for me, it seems not yet fulfilled the title itself which not really explains the origin of Wolverine. Some of the details were short and un-clear. Even the info on Gambit and relationship with Wolverine, its quite blurry. Either way, the movie is best to watch and fulfilled your desire to watch it at last.

Just for your info, the Naruto Movie: Bonds has already on site at Naruto Central. Catch it streaming or downloading. Here the link if you interested.

(http://www.narutocentral.com/?p=media/movies)

HiT | 3 May 2009

{ May 3, 2009 @ 10:47 am } · { HackinTenz }
{ Leave a Comment }

Update on My “Toy”
————————-
1. Wario Search Engine A new revolution search engine has come out. Wario.com has come out in helping user such Google, Yahoo and etc. Wario.com has a special ability to run a search mechanism based on questions and answer method. User that doesn’t know how to type in specific keyword. Now, you can do so with Wario.
(http://www.wario.com)

2. Gizmodo – Show off on Windows 7 Gizmodo has release their custom personalize Windows 7. Has a look.
(http://gizmodo.com/5226696/windows-7-release-candidate-1s-best-surprise-new-features)

3. Setup Comments like RSS Feed for your attention. Normally, we as blogger has a tight schedule with work and other matters. Sometime, we did not have time to review all the comments from viewers that post their ideas/questions in our blogs. This solution with give you a hint on improving your review of all viewer comments.
(http://lifehacker.com/5231206/set-up-comment-reply-notifications-for-this-site)

3. Microsoft Office 2010 – Get the Picture Teaser’s. Have a look on new Microsoft Office 2010. Cool & Great New Design! (http://www.neowin.net/news/main/09/04/27/office-2010-screenshots-emerge)

4. Smart Installer for Geek that Love Computer Formatting. This a handy tools for geek that love formatting or repairing computer. It provide you list of application within one installer/programs.
(http://lifehacker.com/5230098/smart-installer-pack-automatically-installs-your-favorite-software-to-a-new-pc)

Update on My “Work| Researches”
——————————————
Nothing much from the past two weeks. As usual, I been busy to finish up my work assignments and part of my researches. Just to give you some teaser info, I been working on some SOP (Standard of Procedures).

List of them as below:
a. SOP for Windows Update (How-2, Manual, Procedure & Checklist).
b. SOP for Basic Script Kiddies Pen-Test (How-2 & Checklist).
c. SOP for Lab Environment Setup for Pen-Test (How-2 & Checklist).

Other work than above, I spend my time, look into some info and reading some book for my first of all, Training Module. The title will be sort sound like this:
- IT Security (A to Z): Data, Home IT & Safe Internet Security.

I also plan to develop another module training towards a basic info security on Smart Card Technology. I also would like to preview the info on my next article “maybe” but not yet confirm. Either, it will be great, busy, ten’z and sweat forehead for me. Gambate!

Wednesday | 29 April 09

{ April 29, 2009 @ 6:34 am } · { BedTime Story }
{ Leave a Comment }

Hye guys!…I’m so sorry for not updating my blog for couple of days. I been busy with my work, study and even my researches. I have not spend enough time for sleep or enjoyment time for myself. Poorly, my gf also suffer from it because I haven’t care for her lately.

I’ve been busy with some of my office work which I had to bring home. I also haven’t yet started studying for my certification exam. I plan to take my certification exam on next month, maybe middle. Some of my friends said, “hey man, you still got enough time”. Don’t you think?….Damn….Enough or not, I been lately to busy to mind thinking of it.

Why I’m so busy?….Most of my time spend just to review documents, read and go through them again and again. I know, it is my job to do that, but, some how, I feel like doing the same thing and also same document, it does take some effect on my brain. Its like, copy and paste it into my brain.

Also, currently, I been concentrating my researches to create a new security essential module for common user. Just a basic “101″ training module for home user, teacher and even teenager to known what is IT security.

In the same time, I been ask to developed a “101″ pen-test module for my unit at work based on my experience in pen-test and vulnerabilities assessment. Even though I’m still new in this area, but, frankly speaking, I do have enough knowledge to develop the documentations.

So, that just a junk of work for me this month and month of May. Hope to continue and get a headache soon. Cau for now!

Tuesday | 21 April 09

{ April 21, 2009 @ 2:13 am } · { BedTime Story }
{ Leave a Comment }

Yesterday, I been working most of my time on my new project which related to my work and also some of my researches. I been doing the researches for this project for quite some times. The grand opening for this project will be on this year, estimate on June or August 09.

HiT: Thursday | 16 April 09

{ April 16, 2009 @ 3:48 am } · { HackinTenz }
{ Leave a Comment }

Past three days ago, I’m busy with my office work (Internal Audits and etc) and I stuck with several problems with my laptop. But, I gain some point to motivate myself to come out with a Cheat Sheet which I planed from early this year to give some contribution to the Hacking/Security IT World.
You can download the Cheat Sheet here:
Google-HiT: Cheat Sheet for Google Hacking

Make use the cheat sheet and fully utilized it. If you have any comments to improve the cheat sheet, you can do it by sending me emails. I would to hear from you all any suggestion and comments.

Currently, I planned to do some studying and researches on using Mac Book to do analysis and in the same time to test the compatibility using Parallel in Mac OS side by side with VMware Fusion. Because, I planning to use Mac Book to become a VA/HiT notebook for doing testing/VA.

Thursday | 16 April 09

{ April 16, 2009 @ 3:23 am } · { BedTime Story }
{ Leave a Comment }

I finally create a new Cheat Sheet for Google Hacking. You all can download/view the cheat sheet at my HiT website. Its a good tips and tricks that help you in using Google to the fullest performance. Google is your friend, & make sure take advantages of it.

Currently, I reading on Code Breaking Novel ” The Inside Story of Bletchley Park: Code Breakers”. It’s recommended by my big boss. Good for my past time and also my brain.

« Older entries
Follow

Get every new post delivered to your Inbox.