Tuesday, October 30, 2007

Incident Handling Resources

Department of Energy Computer Forensic Labs First Responders Manual

http://www.mirrors.wiretapped.net/security/info/papers/forensics/DOE-CFL-FirstResponseManual.pdf

Department of Justice Computer Seizure Procedures

http://www.cybercrime.gov/s&smanual2002.htm

While reading "Incident Response" I came across references to the
DOE-CFL manual and after some Google searching found the DOJ offering.
Both good reads for those interested in proper procedure for
performing IH.

Thoughts?

Linux By Example

http://linux.byexamples.com/

I stumbled across this in my Internet travels.
All I can say is WOW! I could get lost for days on a site like this
trying out all of the options and experimenting with the offerings.

Take a look and let me know what you think.

Sunday, October 28, 2007

VoIP Server Impersonation Issues

A friend and colleague of mine Sandro Gauci has just posted some interesting information on the blog for his SIP VoIP auditing tool suite Sipvicious:

http://sipvicious.org/blog/2007/10/server-impersonation-and-sip.html

While you there if you haven't given Sipvicious a look to assist you in your SIP VoIP auditing I urge you to do so.

EDIT:

You can also read more about the issue here.