SANS Penetration Testing: Monthly Archives: Nov 2011

The Pushpin Tool - Incorporating Geolocation Info Leakage via Social Networks in Your Pen Tests

[Here's a fun and useful one: MonseigneurJohn Strand announces the release of his Pushpin tool that helps penetration testers and ethical hackers leverage geolocation information from social networking sites in their work. As a bonus, John provides some tips for how you can incorporate it into your pen test regimen as you search for info … Continue reading The Pushpin Tool - Incorporating Geolocation Info Leakage via Social Networks in Your Pen Tests


How Attackers Exploit Modern, Secure Wireless LANs

[Editor's note: For today's blog installment, you've simply GOT to check out this fantastic webcast from Josh Wright about modern wireless attacks. Bad guys are going beyond undermining just WEP and even WPA, and are branching out into all kinds of Wireless LAN attacks against WPA2 and more. In this presentation, Josh covers the tools … Continue reading How Attackers Exploit Modern, Secure Wireless LANs