Handler on Duty: Jesse La Grew
Threat Level: green
Podcast Detail
Today's Stormcast: Powershell meets nmap
If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://chrt.fm/track/2748D7/https://traffic.libsyn.com/securitypodcast/4841.mp3
SANS Daily Network Security Podcast (Stormcast) for Wednesday, January 27th 2016
00:00
My Next Class
Application Security: Securing Web Apps, APIs, and Microservices | San Diego | May 9th - May 14th 2024 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jul 15th - Jul 20th 2024 |
Interested in Internet Storm Center stickers? Check here if there are still some available for today.
Pentest Time Machine: NMAP + Powershell + whatever tool is next
https://isc.sans.edu/forums/diary/Pentest+Time+Machine+NMAP+Powershell+whatever+tool+is+next/20653/
More Car Hacking
http://cseweb.ucsd.edu/~savage/papers/WOOT15.pdf
More ISPs Turn Wifi Routers Into Public Hotspots
http://www.juniperresearch.com/press/press-releases/1-in-3-home-wi-fi-routers-to-double-as-public-hots
More Business E-Mail Compromise News
http://www.scmagazineuk.com/aeroplane-part-maker-claims-cyber-fraud-cost-it-50-million/article/467343/
https://isc.sans.edu/forums/diary/Pentest+Time+Machine+NMAP+Powershell+whatever+tool+is+next/20653/
More Car Hacking
http://cseweb.ucsd.edu/~savage/papers/WOOT15.pdf
More ISPs Turn Wifi Routers Into Public Hotspots
http://www.juniperresearch.com/press/press-releases/1-in-3-home-wi-fi-routers-to-double-as-public-hots
More Business E-Mail Compromise News
http://www.scmagazineuk.com/aeroplane-part-maker-claims-cyber-fraud-cost-it-50-million/article/467343/
Discussion
At the end of the Public Hotspot discussion, you mention that ISPs can push configurations onto privately owned routers/access points so they can connect. How is this done? My understanding is that most ISPs will assign addresses to your edge device via DHCP, but cannot configure anything beyond basic connectivity information.
Posted by stefan on Wed Jan 27 2016, 14:45
The docsis standard allows cable modem operators to push configurations via TFTP. This will only work for cable modems, so if you have a distinct router/access point, then they can not do this. There are specific standards to configure the Wifi part of a modem if present. E.g. http://www.cablelabs.com/wp-content/uploads/specdocs/WR-SP-WiFi-MGMT-I06-160111-1.pdf
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
Application Security: Securing Web Apps, APIs, and Microservices | San Diego | May 9th - May 14th 2024 |
Application Security: Securing Web Apps, APIs, and Microservices | Online | US Eastern | Jul 15th - Jul 20th 2024 |
Application Security: Securing Web Apps, APIs, and Microservices | Las Vegas | Sep 4th - Sep 9th 2024 |