June 14, 2021

New Service Brings Crowdsourcing to Penetration Testing

(LiveHacking.Com) – Crowdsourcing, a term first used back in 2006, has proved a popular way to outsource tasks to large groups or communities (i.e. “the crowd”), where small actions by large numbers can achieve quick results. This idea has now been adopted in the area of penetration testing. Hatforce.com is a new service which rewards ethical hackers for performing penetration tests for willing clients.

The idea is simple. A client signs up to the Hatforce.com web site and offers a financial reward, say $70, for every vulnerability found in their web site or software. Ethical hackers then sign up to Hatforce.com and sign a legal agreement giving them the authority to “hack” the clients resource. If any vulnerabilities are found then they are paid.

The idea of asking “the crowd” to engage in security related tasks was popularized by Google with its Chromium Security Awards scheme. Under Google’s scheme software developers are rewarded for finding security related bugs in Google’s Chrome browser and in the WebKit HTML and Javascript engine. To date Google has paid out hundreds of thousands of dollars in rewards and some people like Sergey Glazunov have become semi-famous for their consistent work in find security holes.

Live Hacking Penetration Testing DVD V1.3 Released

A new version of Live Hacking’s free Linux distribution designed for penetration testing and ethical hacking has been released. V1.3 has updated over 140 packages including Metasploit and Firefox.

New in this release is Metasploit Framework 3.6 which can be used to test your network using the framework’s internal database of known weaknesses and exploits. New to V3.6 are post-exploitation modules that can be run on exploited systems to perform actions such as gathering additional information, pivoting to other networks and elevating system privileges. V3.6 also adds 15 new exploits making a total of 648 exploit modules, 342 auxiliary modules and 23 post modules.

The Live Hacking Linux distribution is a ‘Live DVD’ which boots directly from your DVD and doesn’t need to be installed on your computer. As well as the standard Linux networking tools the Live Hacking DVD has tools for DNS enumeration and reconnaissance as well as utilities for foot-printing, password cracking and network sniffing. It also has programs for spoofing and a set of wireless networking utilities.

Now that the pool of free IPv4 addresses has been depleted, the Live Hacking DVD includes the THC-IPV6 tool, a set of tools to attack the inherent protocol weaknesses of IPv6 and ICMP6.

Use this link to download the Live Hacking DVD V1.3.

Second Live Hacking Workshop in South Africa an Overwhelming Success

Dr. Ali Jahangiri has just finished the second Live Hacking 2010 South Africa workshop and it has been hailed as a resounding success by all involved. Based on his book ‘Live Hacking: The Ultimate Guide to Hacking Techniques and Countermeasures for Ethical Hackers and IT Security Experts’ participants are introduced to the world of ethical hacking and information security.

Dr. Ali Jahangiri, international author and information security expert, is pleased to report that the second Live Hacking 2010 South Africa workshop was a great success. Due to the great success of these workshops Dr. Jahangiri is also pleased to announce that the Live Hacking workshop will be back in South Africa on 7 – 10 March 2011.

The second Live Hacking 2010 South Africa ethical hacking workshop was held in Pretoria, the capital of South Africa, in association with InfoCure the exclusive organizer of Live Hacking workshop series in South Africa.

During the workshop attendees are introduced to the world of hacking and information security and given the knowledge they need to thwart the criminal elements in cyberspace. The South African attendees learnt how to hack and crack using the techniques and tools of real hackers.

“The second Live Hacking 2010 South Africa workshop was a great success and we had participants from so many different areas of information technology” said Dr. Jahangiri at the end of the workshop. “I am pleased to announce that there will be another Live Hacking South Africa Workshop in March next year.” Dr. Jahangiri went on to thank InfoCure for making this workshop a success.

Places are limited for the next Live Hacking South Africa Workshop so it is recommended that potential attendees book soon. Any IT professionals interested in attending should visit the live hacking website: livehacking.com for more details.

During these workshops Dr Jahangiri reveals the “tricks of the trade” while drawing on his many years of academic, professional and practical experience to equip you and your organization with the know-how you need to defend your data against the rising tide of ubiquitous and persistent cyber criminals.