Support us by visiting our sponsors and win a €20 Amazon Voucher every month
Follow maltainfosec on 
Twitter or RSS 2.0 feed
Sit back, relax and learn cryptography using CrypTool. 
CrypTool is a windows-based e-learning software with which can be used to apply and analyze cryptographic mechanisms used in Information Security.
It contains exhaustive online help with tutorials/scenarios, visualizations (e.g. AES, number theory, Enigma) and a comprehensive script with more detailed information about primes, hash functions, digital signatures and more.
Screenshots:
With over a year of inactivity, the latest alpha of nUbuntu 8.04 Security LiveCD has finally surfaced.
All of the latest security and penetration tools are included to make this you’re primary pentesting livecd.
View Screenshots
Direct Download
More info on the 10 best security Live CD Distros (Pen-test, Forensics & Recover) here
Couple of interesting tools that seem to have been released recently:
ManTech Memory DD ManTech Memory DD captures a record of physical, or random access memory which is lost when the computer is shutdown. Released at no charge under the GPL license for government and private use, ManTech’s Memory DD (MDD) is capable of acquiring memory images from the following Microsoft® products: Windows® 2000, Windows Server 2003, Windows XP®, Windows Vista®, and Windows Server 2008.
ManTech’s Memory DD 1.0 acquires a forensic image of physical memory and stores it as a raw binary file. To help verify data integrity and aid in the preservation of the evidence, the information captured by ManTech Memory DD is checked by the Message-Digest algorithm 5 (MD5), the common Internet standard used in security applications. The binary file can then be analyzed using external tools to identify items of interest to the examiner... can be downloaded here
Suiche - of 'Sandman' fame released a memory dumping tool
The main difference between ManTech tool and win32dd, is that win32dd is mainly a kernel mode application — then it avoids to use user-land API to write to an output file, everything is done with native functions. Thus, it means a faster dumping… This point isn’t negligible when you have one million page to dump in one single.
Extracts from the original article found here... include some sane advice to those who get thrilled by the term 'hacker' by none other than the infamous Kevin Mitnick.
Reformed hacker-turned-security-consultant Kevin Mitnick served five years in federal prison for breaking into phone and software company networks. He talks about his past hacking exploits, computer security, and how he turned an illegal hobby into a useful career.
Source
The European Commission today granted its first privacy "seal of approval" to an online service, paving the way for e-businesses across Europe to certify their practices for protecting users' personal information.
The privacy seal, dubbed EuroPriSe (European Privacy Seal), is a detailed conformance and testing program designed to certify that an online service meets all of the European Union's laws and regulations regarding the handling of customer data. Is it a matter of time before we have to comply?
In a nutshell, the seal assures the user that a Website or online business doesn't store personal data (including IP addresses) for long periods of time or monitor user behavior in ways that are not allowed under EU regulations. The seal also assures users that the personal information collected by the site is kept secure.
Continue reading "Europe Grants First Privacy Certification"
Google have added a cool feature for users of GMail - the ability to sign out from previously logged in sessions - therefore if you have the habbit of signing into GMail from multiple PC's and "forget" to logoff, scroll to the bottom of you current GMail screen and you will see the new feature titling "Last account activity: xx minutes ago on this computer. Details.."
Click the <details> link and you're presented with a list of previous sessions which allows you to quickly verify that all the GMail activity was indeed yours. To be extra cautious you can click on "Sign out all other sessions" - this way you prevent any unauthorised usage of previous sessions.
Full report can be read here
An update to the features recently released...
