May 25th, 2010 by bl4ckc4t

An Introduction to Metasploit Express WebCast:

Tuesday, May 25, 2010 12:30 PM – 1:30 PM PDT

Introducing the First Mainstream, Easy-To-Use, Penetration Testing Solution Accessible and Practical for Security Professional Everywhere

Metasploit Express is an affordable, easy-to-use penetration testing solution that provides full network penetration testing capabilities, backed by the world’s largest, fully tested and integrated public database of exploits.

Join this Webcast to hear HD Moore, Chief Architect of Metasploit, share details on Metasploit Express and how it can make a difference in your organization.

Metasploit Express was designed for penetration testers by penetration testers; we understand that the exploits are critical for security engagements, but that exploits only take you so far. Metasploit Express goes beyond exploits and provides the ability to leverage insecure configurations, weak passwords, and trust relationships to gain access to the target network and the data within.

Key features:

* Easy to use – simple to use GUI interface supported by end-to-end workflow and reports
* Integrated – ships with pre-built integration with all versions of the market leading vulnerability management product Rapid7 NeXpose and other solutions
* Affordable – available at a price point that a broad range of security professionals in large corporations, consulting organizations, and small business can leverage

May 14th, 2010 by bl4ckc4t

An InformationWeek WebCast:

Wednesday, May 26, 10:00am PT/1:00pm EST

Inside the Cybercriminal’s Mind: A Live Hacking Demo

Join one of HP’s lead web security research experts, Oscar Salazar, as he demonstrates a live hacking scenario to illustrate how hackers find and exploit vulnerabilities in web applications to take control of your applications, servers and the data they store.
During this webcast, Oscar will demonstrate detailed, step-by-step hacking scenarios that show how hackers can take advantage of even the most mundane looking developer mistakes to expose security vulnerabilities and take complete control of a remote server.

Participants in this webcast will learn:

• The threat that security vulnerabilities like Cross site scripting (XSS) and Google hacking present to organizations.
• How SQL Injection or Remote File Inclusion (RFI) can be used to take control of a server
• The extent of the damage that can be done to your business, data, employees, customers and brand when an intruder has control of assets on your network
• How some vulnerabilities can compromise a server, while others merely expose application logic
• How a hacker can turn a secure application against itself by using its logic with malicious intent

Register Now

May 14th, 2010 by bl4ckc4t

The EC-Council First Look Training Series allow participants to experience an actual EC-Council training session. Delivered by some of the best EC-Council Instructors, this session shall cover training modules from our suite of certification programs, first hand and Live!

May 26 2010: 9:00am – 12:00pm EST

EC-Council Computer Hacking Forensic Investigator (C|HFI) First Look
Topic:
Module 8 : Understanding Hard Disks and File Systems
Module 20 : Steganography

Join this 3 hours “live” online training session led by EC-Council Lead Trainer, Mr. Wayne Burke, to understand the roles that Hard Disks and File Systems play in the Computer Investigation Process, as well as find out all about Steganography. Wayne will also demonstrate and review some of the tools featured in the world renowned CHFI program.

This session will include a special live presentation by Mr. Ari Takanen, CTO of Condenomicon. Ari will demonstrate live “Penetration Testing Process with Fuzzers and Network Analyzers”.

There will be a 30 minutes Q&A towards the end of the session where you can ask Wayne questions pertaining to the training.

May 11th, 2010 by bl4ckc4t

For Certified Members and Information Security Professionals Globally

Round-table discussion on the direction of secure clouds. Do you use a cloud platform today? What is your most important expectation of Cloud providers? Will further regulation help or hinder security in the Cloud? What is the greatest factor in deciding what data will be placed in the Cloud? Andrew Yeomans is Vice President of Global Information Security at Commerzbank (formerly Dresdner Kleinwort investment bank). Andrew is on the management board of the Jericho Forum, which is an international information security thought-leadership group. Andrew is also is a member of the Executive Advisory Board of the ISSA UK chapter and Infosecurity Europe Advisory Council. As Chief Security Officer (CSO) of Qualys, Randy is responsible for security, risk management and business continuity planning of the QualysGuard platform used by thousands of organisations worldwide. He will also lead the Qualys CSO Advisory Board efforts to collaborate with customers on forging and implementing security and compliance best practices. Randy has over 13 years of information technology and leadership experience. Prior to joining Qualys, he was the Information Security Officer at Yodlee responsible for insuring a high-level security posture of Yodlee’s Internet based financial services. Ian Osborne is Director of the Digital Systems Knowledge Transfer Network, a Technology Strategy Board funded programme operated by a consortium led by Intellect with QinetiQ and National Physical Laboratory. The Digital Systems KTN launched in October 2009 and is initially comprised of three programmes: Cyber-Security, Location & Timing and Scalable Computing. The new KTN is working closely with Digital Communications KTN and leading industry suppliers and innovators with a brief to address the needs for promoting ICT-based innovation in private and public sector organizations.

Presenter: Andrew Yeomans, Jericho Forum, Randy Barr, Qualys, Ian Osbourne, Intellect UK

Scheduled Time: June 15 2010, 6:45am

Duration: 45 mins

http://www.brighttalk.com/webcast/21037

May 11th, 2010 by bl4ckc4t

For Certified Members and Information Security Professionals Globally

The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in various e-business and security skills. It is the owner and developer of the world famous Certified Ethical Hacker (C|EH), Computer Hacking Forensics Investigator (C|HFI) and EC-Council Certified Security Analyst (E|CSA)/License Penetration Tester (L|PT) programs, and various others offered in over 60 countries around the globe.

=========================================================================

As IT organizations begin to implement business critical applications in the cloud, there are serious security concerns that must be addressed. A recent Cloud Security Alliance research project, sponsored by Hewlett Packard, produced a report unveiled to the world on March 1, 2010. Join HP and the Cloud Security Alliance to learn about the Seven Deadly Sins of Cloud Security

In this webcast, participants will learn about:
- The seven deadly sins of cloud security
- Common cloud security misconceptions
- Best practices for avoiding the seven deadly sins
- How HP can help you secure cloud initiatives

Presenter: Jim Reavis, CSA; Archie Reed, HP; Dennis Hurst, HP

Scheduled Time: June 02 2010, 6:00am

Duration: 1 hr 00 mins

http://www.brighttalk.com/webcast/21019